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37/5, K/1 (Item 1 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts. reserv. 

01605139 

RC4 for packet encryption method 

RC4 Verfahren zur Verschlusselung von Paketen 

Methode RC4 pour le cryptage de paquets 

PATENT ASSIGNEE: 

Avaya Technology Corp., (3148500), 211 Mount Airy Road, Basking Ridge, NJ 
07920, (US), (Applicant designated States: all) 
INVENTOR: 

Garstin, Mark, 1137 Upper River Court, Mississauga, Ontario L5W 1C2, (CA) 
Gilman, Robert R. , 3243 West 11th Avenue, Broomfield, Colorado 80020, 
(US) 

Wutzke, Mark, 7/52 Tranmere Street, Drummoye, New South Wales, (AU) 
Robinson, Richard L., 13920 Dogleg Lane, Broomfield, Colorado 80020, (US) 
Siddiqui, Anwar, 160 Claremont Avenue, No 6A, New York, New York 10027, 
(US) 

LEGAL REPRESENTATIVE: 

Williams, David John et al (86433), Page White & Farrer, 54 Doughty 
Street, London WCIN 2LS, (GB) 
PATENT (CC, No, Kind, Date) : EP 1326367 Al 030709 (Basic) 
APPLICATION (CC, No, Date): EP 2003250042 030103; 
PRIORITY (CC, No, Date) : US 38295 020104 

DESIGNATED STATES: AT; BE; BG; CH; CY; CZ; DE; DK; EE; ES; FI; FR; GB; GR; 

HU; IE; IT; LI; LU; MC; NL; PT; SE; SI; SK; TR 
EXTENDED DESIGNATED STATES: AL; LT; LV; MK; RO 
INTERNATIONAL PATENT CLASS: H04L-009/12 ; H04L-009/00 

ABSTRACT EP 1326367 Al 

The present efficient packet encryption method decreases the 
computation time to encrypt and decrypt successive packets of plaintext 
data. An S-vector is generated and the S-vector is used to encrypt 
successive packets of plaintext, thus reducing the per packet 
encryption/decryption time. The formula for encrypting successive packets 
includes use of the packet sequence number with a third variable injected 
to eliminate the predictability of the variables, thus making the present 
efficient packet encryption method more secure. A fourth variable is 
injected into the calculations to generate an encryption stream that does 
not repeat as frequently to provide additional security from hackers. For 
encrypting a packet having a long payload of plaintext, a packet byte 
sequence number is used to generate an encryption stream that is less 
likely to repeat within a particular packet. 

ABSTRACT WORD COUNT: 134 

NOTE: 

Figure number on first page: 3 

LEGAL STATUS (Type, Pub Date, Kind, Text): 
Application: 030709 Al Published application with search report 

Examination: 031126 Al Date of request for examination: 20030926 

Examination: 031217 Al Date of dispatch of the first examination 

report: 20031104 

LANGUAGE (Publication, Procedural, Application) : English; English; English 
FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 

CLAIMS A (English) 200328 1335 

SPEC A (English) 200328 5282 
Total word count - document A 6617 



Total word count - document B 0 
Total word count - documents A + B 6617 

INTERNATIONAL PATENT CLASS: H04L-009/12 ... 

. . . H04L-009/00 

...CLAIMS part and a second part; 

setting a first variable as the first part of the sequence number ; 
setting a second variable as the second part of the sequence 
number ; 

setting a byte sequence number; 

calculating a third variable as the sum of the second variable plus the 

byte sequence number ; 
incrementing the byte sequence mimber by one; 

calculating a fourth variable by adding the first variable plus 
the value within the S-vector pointed to by the third variable; 

locating an encryption byte, wherein the location of the encryption 
byte within the S-vector is pointed to by the sum of the value within 



...at least one byte of ciphertext. 

2. The method of claim 1 where setting a second variable further 

comprises : 

exclusive ORing the second part of the sequence number and the value 
within the S-vector pointed to by the first variable. 

3. The. . . 

. . .portion and a second portion; 

setting a first variable using the first portion of the sequence 
number; 

setting a second variable using the second portion of the sequence 
number; and 

setting. . . 

...of the plurality of bytes of plaintext, calculating a next encryption 
byte, the calculating comprising: 
adding the second variable to the byte sequence number to 
produce a third variable; 
calculating a fourth variable by adding the first variable plus 

the value within the S-vector pointed to by the third variable; 
locating a next encryption byte within the S-vector by adding the 
values within the S-vector pointed to. . . 

...the third variable and the fourth variable to calculate a pointer to 
locate the next encryption byte; setting the second variable 
equal to the third variable; and incrementing the byte sequence 
number by one. 

5. The method of claim 4 wherein calculating a second variable 

comprises : 

exclusive ORing the second portion of the sequence number with the 
value within the S-vector pointed to by the first variable. 

6. The. . . 

...the sequence number; 

setting a first variable j according to j = first part of the sequence 
number ; 



calculating a second variable i according to i = second part of the 

sequence number ; 
for each successive byte of the plurality of bytes of plaintext P, 

calculating a next... or more packets to a receiver. 
12. The method of claim 11 wherein calculating a second variable i 

further comprises: 
exclusive ORing the low order sequence mimber and the value within 

the S-vector pointed to by first variable according to i... 

...each successive byte of the plurality of bytes of plaintext P, 

calculating a next successive encryption byte E, the calculating 
comprising : 

setting a first variable j according to j = high order of the sequence 
number ; 

calculating a second variable i according to i = (low order of the 

sequence number ) (plus sign in circle) S(j); 
setting a counter r; 

further calculating the first variable... 



37/5, K/2 (Item 2 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts. reserv. 

01513206 

ENCRYPTING DEVICE 
VERSCHLUSSELUNGSEINRICHTUNG 
DISPOSITIF DE CHIFFREMENT 

PATENT ASSIGNEE: 

MITSUBISHI DENKI KABUSHIKI KAISHA, (208589), 2-3, Marunouchi 2-chome, 
Chiyoda-ku, Tokyo 100-8310, ( JP) , (Applicant designated States: all) 
INVENTOR: 

KASUYA, Tomomi, c/o Mitsubishi Denki Kabushiki K. , 2-3, Marunouchi 

2-chome, Chiyoda-ku, Tokyo 100-8310, (JP) 
CHIKAZAWA, Takeshi, c/o Mitsubishi Denki K. K. , 2-3, Marunouchi 2-choine, 

Chiyoda-ku, Tokyo 100-8310, (JP) 
WAKABAYASHI, Takao, c/o Mitsubishi Denki K. K. , 2-3, Marunouchi 2-chome, 

Chiyoda-ku, Tokyo 100-8310, (JP) 
UGA, Shinsuke, c/o Mitsubishi Denki Kabushiki K., 2-3, Marunouchi 

2-chome, Chiyoda-ku,. Tokyo 100-8310, (JP) 
LEGAL REPRESENTATIVE: 

Pfenning, Meinig & Partner (100961), Mozartstrasse 17, 80336 Munchen, 

(DE) 

PATENT (CC, No, Kind, Date) : EP 1376922 Al 040102 (Basic) 

WO 2002082715 021017 
APPLICATION (CC, No, Date): EP 2001917799 010403; WO 2001JP2880 010403 
DESIGNATED STATES: AT; BE; CH; CY; DE; DK; ES; FI; FR; GB; GR; IE; IT; LI; 

LU; MC; NL; PT; SE; TR 
EXTENDED DESIGNATED STATES: AL; LT; LV; MK; RO; SI 
INTERNATIONAL PATENT CLASS: H04L-009/00 ; G09C-001/00 

ABSTRACT EP 1376922 Al 

A random number sequence is previously generated by the function f8 for 
data confidentiality processing, which generates a random number 
sequence, and stored in a random number sequence memory (buffer) . When 
data (message) is input, the random number sequence stored in the random 
number sequence memory is obtained, and the data (message) is encrypted 
by an XOR circuit to generate ciphertext data. In case of decrypting 
data, a random number sequence is also previously generated by the 
function f8 for data confidentiality processing and stored in the random 



number sequence memory (buffer) . When the ciphertext data is input, by 
the XOR circuit, the random number sequence stored in the random number 
sequence memory is read and the ciphertext data is decrypted into the 
data (message) . 

ABSTRACT WORD COUNT: 126 

NOTE: 

Figure number on first page: 25 

LEGAL STATUS (Type, Pub Date, Kind, Text): 
Application: 021211 Al International application. (Art. 158(1)) 

Application: 021211 Al International application entering European 

phase 

Application: 040102 Al Published application with search report 

Examination: 040102 Al Date of request for examination: 20030925 

LANGUAGE (Publication, Procedural, Application) : English; English; Japanese 

FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 

CLAIMS A (English) 200401 1804 

SPEC A (English) 200401 13439 
Total word count - document A 15243 
Total word count - document B 0 
Total word count - documents A + B 15243 

INTERNATIONAL PATENT CLASS: H04L-009/00 ... 

. . . G09C-001/00 



37/5, K/9 (Item 9 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 
. (c) 2004 European Patent Office. All rts. reserv. 

01334062 

Method for activating an encrypted file 

Verfahren zur Freischaltung einer verschlusselten Datei 
Precede pour activer un fichier de donnees cryptees 

PATENT ASSIGNEE: 

Mannesmann VDO Aktiengesellschaf t , (205194), Kruppstrasse 105, 60388 
Frankfurt am Main, (DE) , (Applicant designated States: all) 
INVENTOR: 

Thoone, Martin, Kirchstrasse 21, D-35614 Asslar, (DE) 
Drijfhout, Theo, Geheimrat-Gester-Strasse 2, D-35619 Braunfels, (DE) 
LEGAL REPRESENTATIVE: 

Rassler, Andrea, Dipl.-Phys. (65972), Kruppstrasse 105, 60388 Frankfurt, 
(DE) 

PATENT (CC, No, Kind, Date) : EP 1139196 Al 011004 (Basic) 
APPLICATION (CC, No, Date): EP 2000106809 000330; 

DESIGNATED STATES: AT; BE; CH; CY; DE; DK; ES; FI; FR; GB; GR; IE; IT; LI; 

LU; MC; NL; PT; SE 
EXTENDED DESIGNATED STATES: AL; LT; LV; MK; RO; SI 
INTERNATIONAL PATENT CLASS: G06F-001/00 

ABSTRACT EP 1139196 Al (Translated) 

Releasing a coded data file involves the use of equipment identifiers 
established by using enciphered codes and keys passed between a local 
computer system and a central station 

The method involves passing an equipment identifier from a local 
computer system to a central station, computing a new equipment 
identifier using a change code, specifying a first enciphered code using 
a key, specifying a second enciphered code using the data file 
identifier, passing the enciphered codes to the local system, computing 



the new equipment identifier, the key and data file identifier in the 
local system and releasing the data file. 

The method involves passing an equipment identifier (ID(i-l)) from a 
local computer system to a central station, computing a new equipment 
identifier (ID(i)) from the equipment number and a change code, 
specifying a first enciphered code ( PIN ) using the computed code and 
a key (k), specifying a second enciphered code (ACW) using the data 
file identifier and the key, passing the enciphered codes to the local 
system, computing the new equipment identifier in the local system from 
the stored identifier and the change code, computing the key from the 
first enciphered code and the equipment identifier, computing the data 
file identifier (AC) from the second enciphered code and the key and 
releasing the data file for use by the local system. Independent claims 
are also included for the following: a system for managing and releasing 
access rights to data files. 
TRANSLATED ABSTRACT WORD COUNT: 239 

ABSTRACT EP 1139196 Al 

Es wird ein Verfahren zur Freigabe von Nutzungsrechten an einer auf 
einem Speichermedium zusammen mit mindestens einer weiteren Datei 
abgespeicherten und mit einer Kennung versehenen Datei zur Nutzung durch 
ein einziges oder eine begrenzte Anzahl von lokalen Computersystemen 
beschrieben. 

Hierzu wird von einer Zentralstelle ein erster und ein zweiter 
chiffrierter Code PIN bzw. ACW berechnet, der einen Schlussel k zur 
Entschlusselung der verschlusselt abgespeicherten Dateien und eine 
Geratekennzahl ID enthalt. Die Geratekennzahl ID wird bei jeder neuen 
Freigabe geandert . Nach Eingabe der beiden chiffrierten Codes in das 
Computersystem wird in diesem zunachst eine neue Geratekennzahl ID aus 
abgespeicherten Oaten und mit dieser neuen Geratekennzahl ID und dem 
ersten chiffrierten Code PIN des Schlussel k und mit dem Schlussel k und 
dem zweiten chiffrierten Code ACW eine Kennung AC der f reizuschaltenden 
Datei berechnet. 

ABSTRACT WORD COUNT: 133 

NOTE : 

Figure number on first page: 5 

LEGAL STATUS {Type, Pub Date, Kind, Text): 
Application: 011004 Al Published application with search report 

Assignee: 020109 Al Transfer of rights to new applicant: Siemens 

Aktiengesellschaft (3937630) Wittelsbacherplatz 
2 80333 Munchen DE 
Examination: 020116 Al Date of request for examination: 20011119 

Deleted: 020515 Al Legal representative ( s ) deleted 20020325 

LANGUAGE (Publication, Procedural, Application) : German; German; German 
FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 

CLAIMS A (German) 200140 980 

SPEC A (German) 200140 4134 

Total word count - document A 5114 
Total word count - document B 0 
Total word count - documents A + B 5114 

. . .ABSTRACT system to a central station, computing a new equipment 
identifier (ID(i)) from the equipment number and a change code, 
specifying a first enciphered code { PIN ) using the computed code and 
a key (k) , specifying a second enciphered code (ACW) using the data 
file identifier and the key, passing the enciphered codes to the local 
system, computing the new equipment identifier in the local system from 



37/5, K/13 (Item 13 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts. reserv. 

01008069 

METHOD OF TRANSMITTING VARIABLE -LENGTH FRAME, TRANSMITTER, AND RECEIVER 
VERFAHREN, SENDER UND EMPFANGER ZUR UBERTRAGUNG VON RAHMEN MIT VARIABLER 
LANGE 

PROCEDE DE TRANSMISSION DE TRAME A LONGUEUR VARIABLE, EMETTEUR ET RECEPTEUR 

PATENT ASSIGNEE: 

NTT MOBILE COMMUNICATIONS NETWORK INC., (1560153), 10-1, Toranomon 

2-chome, Minato-ku, Tokyo 105-8436, ( JP) , (applicant designated states: 
DE;FR;GB;IT;SE) 
INVENTOR: 

NAKA, Nobuhiko, B-202, 1-36-20, Ohoka, Minami-ku, Yokohama-shi, Kanagawa 
232-0061, (JP) 

KAWAHARA, Toshiro, 2-506, 2-1-3, Hayashi, Yokosuka-shi, Kanagawa 238-0315 
. (JP) 
LEGAL REPRESENTATIVE: 

HOFFMANN - EITLE (101511), Patent- und Rechtsanwalte Arabellastrasse 4, 
81925 Munchen, (DE) 
PATENT (CC, No, Kind, Date) : EP 915588 Al 990512 (Basic) 

WO 9852315 981119 
APPLICATION (CC, No, Date) : EP 98919605 980515; WO 98JP2141 980515 
PRIORITY (CC, No, Date) : JP 97127608 970516 
DESIGNATED STATES: DE; FR; GB; IT; SE 

INTERNATIONAL PATENT CLASS: H04L-007/08; H04J-003/06; 

CITED REFERENCES (WO A) : 

SANAE HOTANI, TOSHIO MIKI, "Study on Variable-Frame Synchronizing Method 
Suitable for MPEG-4 Audio (in Japanese)", TECHNICAL RESEARCH REPORT OF 
lEICE (DIGITAL SIGNAL PROCESSING), Vol. 96, No. 477, (DSP96-113) , 23 
January 1997, pages 35-42. 
NOBUHIKO NAKA, TAKASHI SUZUKI, TOSHIRO KAWAHARA, TOSHIO MIKI, "Study on 
Protection of Variable-Frame Synchronization (in Japanese)", TECHNICAL 
RESEARCH REPORT OF lEICE (RADIO COMMUNICATION SYSTEM), Vol. 97, No. 
193, {RCS97-50), 24 July 1997, pages 23-28.; 

ABSTRACT EP 915588 Al 

A variable length frame transmission method making it possible to 
accurately and easily establish synchronism at the receiver side without 
redundancy of system under an environment in which a code error easily 
occurs . 

In a transmitter, a variable length frame division section 1 divides a 
variable length frame f into code strings f 1) ) and f2) ) having a length 
ratio of 1:1. A first synchronization flag addition section 3-1 adds a 
synchronization flag SI)) to the head of the code string fl) ) and a 
second synchronization flag addition section 3-2 adds a synchronization 
flag S2)) to the head of the code string f2)). The synchronization flags 
have contents different from each other, but they have the same length. 
Code strings having synchronization flags are multiplexed by a changeover 
switch 4 and formed into a variable length frame. A series of variable 
length frames obtained from the changeover switch 4 are transmitted to a 
receiver as serial data. In the receiver, the start and end points of 
each frame is obtained based on the position of each synchronization flag 
in the serial data. 
ABSTRACT WORD COUNT: 182 

LEGAL STATUS (Type, Pub Date, Kind, Text): 
Application: 990407 Al International application (Art. 158(1)) 

Application: 990512 Al Published application (Alwith Search Report 



;A2without Search Report) 
Change: 990526 Al Title of invention (German) (change) 

Examination: 990811 Al Date of request for examination: 19990115 

LANGUAGE ( Publication, Procedural, Application) : English; English; Japanese 

FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 

CLAIMS A (English) 9922 1417 

SPEC A (English) 9922 12770 
Total word count - document A 14187 
Total word count - document B 0 
Total word count - documents A + B 14187 

. . .CLAIMS flags, 

7. The variable length frame transmission method according to claim 6, 
wherein 

the transmitter encodes the additional information including the 

information concerned with the structure of the variable length frame 
to generate identification code strings by encoding methods 
different between the consecutive variable length frames and adds 
the identification code strings after the synchronization flags 
to transmit the serial data, and 

the receiver detects the... 



37/5, K/14 (Item 14 from file: 348) 

DIALOG (R) File 348: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts. reserv. 

00957049 

System and method for authentication, and device and method for 
autentication 

System und Verfahren zur Authentif ikation, und Vorrichtung und Verfahren 

zur Authentif ikation 
Systeme et methode d' authentif ication, et dispositif et methode 

d * authentif ication 

PATENT ASSIGNEE: 

SONY CORPORATION, (214022), 7-35, Kitashinagawa 6-chome Shinagawa-ku, 
Tokyo, (JP), (Proprietor designated states: all) 
INVENTOR: 

Kusakabe, Susumu, c/o Sony Corporation, 7-35, Kitashinagawa 6-chome, 

Shinagawa-ku, Tokyo, (JP) 
Takada, Masayuki, c/o Sony Corporation, 7-35, Kitashinagawa 6-chome, 

Shinagawa-ku, Tokyo, (JP) 
Ishibashi, Yoshihito, c/o Sony Corporation, 7-35, Kitashinagawa 6-chome, 
Shinagawa-ku, Tokyo, (JP) 
LEGAL REPRESENTATIVE: 

Melzer, Wolfgang, Dipl.-Ing. et al (8278), Patentanwalte Mitscherlich & 
Partner, Sonnenstrasse 33, 80331 Munchen, (DE) 
PATENT (CC, No, Kind, Date) : EP 867843 A2 980930 (Basic) 

EP 867843 A3 000920 
EP 867843 Bl 040121 
APPLICATION (CC, No, Date): EP 98105233 980323; 
PRIORITY (CC, No, Date): JP 9773205 970326; JP 97110889 970428 
DESIGNATED STATES: DE; FR; GB 

EXTENDED DESIGNATED STATES: AL; LT; LV; MK; RO; SI 
RELATED DIVISIONAL NUMBER(S) - PN (AN): 

EP 1339028 (EP 2003000440) 
INTERNATIONAL PATENT CLASS: G07F-007/10; H04L-009/00 ; H04L-009/08 
CITED PATENTS (EP B) : EP 422230 A; EP 427465 A; EP 552392 A; US 5293029 A 
CITED REFERENCES (EP B) : 



PATENT ABSTRACTS OF JAPAN vol. 1997, no. 03, 31 March 1997 (1997-03-31) & 
JP 08 305662 A (FUJITSU LTD), 22 November 1996 (1996-11-22); 



ABSTRACT EP 86784 3 A2 

In authentication using a plurality of cipher keys, the authentication 
time is shortened. In the case that an encipher key to encipher key are 
required to take an access to each area out of the area to area in a 
memory of an IC card, a plurality of areas to have an access is informed 
to the IC card from a reader writer, a plurality of cipher keys 
corresponding to these areas (for example, cipher key 1, cipher key 2, 
and cipher key 4) is read out, and reduction processing section generates 
one reduction key from these cipher keys. A random number which is 
generated from a random number generation section of the reader writer is 
transferred to the IC card, and. an encipherment section enciphers the 
random number using the reduction key. The reader writer receives the 
enciphered random number from the IC card, and deciphers it using the 
reduction key, and judges the IC card to be proper if the deciphered 
random number is equal to the generated random number. 

ABSTRACT WORD COUNT: 173 

NOTE: 

Figure number on first page: 1 

LEGAL STATUS (Type, Pub Date, Kind, Text) : 

International Patent Classification changed: 
20000801 

Published application (Alwith Search Report 
;A2without Search Report) 
Granted patent 

Application number of divisional application 
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Date of dispatch of the first examination 
report: 20011217 

Title of invention (German) changed: 20031120 
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...SPECIFICATION first communication means of the first device using the 
first key corresponding to the key identification nvimber , and a 
changing means (for example, a control section 36 shown in Fig. 18) for 
judging whether the... 

...CLAIMS claim 15, wherein said second device comprises: 
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data and second enciphered data received from said first 
communication means of said first device using said first key 
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are in a prescribed relation... 
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Cryptographic unit touch point logic 
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ABSTRACT EP 821508 A2 

Cryptographic hardware is provided that is disabled at the time of 
shipment and that is selectively enabled in a trusted fashion using 
methods and interfaces that may be controlled by and governed by 
government policy in strict compliance with existing and future 
legislation. A given cryptographic algorithm is disabled/enabled at 
several points, referred to as Touch Points, and referred to collectively 
as Touch Point Logic. Because attributes of each touch point are 
satisfied by providing data that are referred to as Touch Point Data, 
manufactures are allowed to include disabled cryptographic hardware in 
their products and governments are provided with the ability to enable 
this cryptographic hardware only in compliance with governing 
legislation . 
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...SPECIFICATION but does not really trust the cryptographic unit. Every 
now and then the policy may change the sequence number . Thus, the 
policy may normally increment the sequence nximber one by one by one, 
and then every now and then it issues another random. . . 
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Authentication method, communication method, and information processing 
apparatus 

Authentifizierungsverf ahren, Kommunikationsverf ahren und Inf ormationsverarb 
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traitement d* inf ormation 
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ABSTRACT EP 817420 A2 

Mutual authentication is performed. A reader/writer (R/W) transmits to 
an IC card a code CI such that a random number RA is encrypted using a 
key KB. The IC card decrypts the code CI into plain text Ml using the key 
KB. The IC card transmits to the R/W a code C2 such that the plain text 
Ml is encrypted using a key KA and a code C3 such that a random number RB 
is encrypted using the key KA. The R/W decrypts the codes C2 and C3 into 
plain text M2 and plain text M3, respectively, using the key KA. When the 
R/W determines that the plain text M2 and the random number RA are the 
same, it authenticates the IC card. Next, the R/W transmits to the IC 
card a code C4 such that the plain text M3 is encrypted using the key KB. 
The IC card decrypts the code C4 into plain text M4 using the key KB. 
When the IC card determines that the plain text M4 and the random number 
RB are the same, it authenticates the R/W. 
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...CLAIMS identification number. 

18. An information processing apparatus according to claim 16 or 17, 
wherein said identification nximber is changed for each 
encryption of said first command. 

19. An information processing apparatus according to claim 18, wherein 
said identification number is increased for each encryption of said 
first command. 

20. An information processing apparatus according to claim 17, 18 or... 
with said eighth code. 

27. An information processing apparatus according to claim 26, wherein 
said identification nvunber is changed for each encryption of 
said seventh code. 

28. An information processing apparatus according to claim 27, wherein 
said identification number is increased for each encryption of said 
seventh code. 

29. An information processing apparatus according to any one of claims... 
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Ncl) , and 

e) retaining as second variable (Tc, Nc) for the calculation of said 



second password (Aa) said substituted and adjusted variable. 
2. System according to claim 1, characterized in that... 
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Client/ server protocol for proving authenticity 
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ABSTRACT EP 807 911 A2 

A protocol for establishing the authenticity of a client to a server in 
an electronic transaction by encrypting a certificate with a key known 
only to the client and the server. The trust of the server, if necessary, 
can be established by a public key protocol. The client generates and 
sends over a communications channel a message containing at least a part 
of a certificate encrypted with the server's public key or a secret 
session key. The server receives and processes the message to recover at 
least part of the certificate, verifies and accepts it as proof of the 
client ' s authenticity. 

ABSTRACT WORD COUNT: 102 



LEGAL STATUS (Type, Pub Date, Kind, Text) 
Assignee: 



011017 A2 Transfer of rights to new applicant: RSA 

Security Inc, (3855710) 100 Marine Parkway 
Redwood City, California 94065-1031 US 
20000308 A2 Date of request for examination: 20000106 
020904 A2 Date application deemed withdrawn: 20020227 
011128 A2 Date of dispatch of the first examination 

report: 20011016 
971119 A2 Published application (Alwith Search Report 

;A2without Search Report) 
990707 A3 Separate publication of the European or 

International search report 
990707 A2 Obligatory supplementary classification 
(change) 

LANGUAGE ( Publication, Procedural , Application) : English; English; English 
FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 
CLAIMS A (English) 9711W2 4394 



Examination : 
Withdrawal : 
Examination : 

Application: 

Search Report : 

Change : 



SPEC A (English) 9711W2 8944 

Total word count - document A 13338 

Total word count - document B 0 

Total word count - documents A + B 13338 

...INTERNATIONAL PATENT CLASS: H04L-009/32 

...SPECIFICATION program to be executed by processor 2, clock 8 is set (or 
an initial time- varying value , e.g., a sequence number or a 
timestamp is set in one of the memories when a clock is not... 



37/5, K/20 (Item 20 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts, reserv. 

00870002 

Identification number issuing device and identification number verification 
device 

Ausweisszahlausgabegerat und Ausweisszahliaberprufungsgerat 
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An identification number issuing device comprising a code converter 
portion for converting an identification number character string 
constructed of character string of alphabets, numerals and the like into 
codes having one-to-one correspondence to letters (characters), and a 
check and selection portion for selecting as an identification number the 
character string corresponding to the code string that is determined to 
meet the Reed-Solomon code rule with the code being a symbol and the 
string of the symbol being a code length. The identification number is 
issued based on the Reed-Solomon code of a generating polynomial having a 
plurality of initial elements as roots, and for additional issuing, 
identification numbers are additionally issued based on the Reed-Solomon 
code with the number of elements of the generating polynomial reduced by 
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Telephone arrangement for remote loading of telephonic subscription data 

from an autonomous station. 
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In response to a call request (LID) emanating from the autonomous 
station (SP) and in the presence of a loading request signal, the control 
means (UTF) investigate all the telephone subscription data relating to 
the autonomous station (SP) as well as that indicating the remote-loading 
order. The enciphering means (CDF) encipher, with the aid of the special 
key (EPID), those which are secret (PIN). The processing means (UTF) 
allow the transmission in clear of the telephone subscription data which 
are public, as well as those which are secret and so enciphered, to the 
said autonomous station (SP) as a function of the remote-loading order. 

At the level of the autonomous station (SP) the deciphering means (CDP) 
decipher the telephone subscription data which are secret, enciphered and 
so received with the aid of the special key (EPID), and the processing 
means (UTP) store the subscription data which are public so transmitted 
in clear, and secret so deciphered in the memory of the autonomous 
station (SP) . 

TRANSLATED ABSTRACT WORD COUNT: 167 



ABSTRACT EP 459065 Al 

En reponse a une demande d'appel (LID) emanant de la station autonome 
(SP) et en presence d'un signal de demande de chargement, les moyens de 
commande (UTF) recherchent toutes les donnees d'abonnement telephonique 
relatives a la station autonome (SP) ainsi que celle indiquant 1 ' ordre de 
chargement a distance. Les moyens de chiffrement (CDF) chiffrent a 1 ' aide 
de la cle particuliere (EPID) celles qui sont secretes (PIN) . Les moyens 
de traitement (UTF) autorisent la transmission des donnees d'abonnement 
telephonique publiques en clair ainsi que celles secretes ainsi chiffrees 
vers ladite station autonome (SP) en fonction de 1* ordre de chargement a 
distance . 

Au niveau de la station autonome (SP) les moyens de dechif f rement (CDP) 
dechiffrent les donnees d*abonnement telephonique secretes chiffrees 
ainsi recues a I'aide de la cle particuliere (EPID), et les moyens de 
traitement (UTP) stockent les donnees d'abonnement publiques ainsi 
transmises en clair et secretes ainsi dechiffrees dans la memoire de la 
station autonome (SP) . (voir 1 image dans le document original) 
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English Abstract 

A secure wireless local or metropolitan area network (10) and data 
communications devices therefore are provided (lln), where the device 
(lln) transmits plain text in an encrypted message including cipher text 



and an initialization vector. The device may include a seed generator 

(20) for performing a one-way algorithm using a secret key, a device 
address, and a changing reference value for generating a seed. Further, a 
random initialization vector (IV) generator (21) may be included for 
generating a random IV, and a key encryptor (22) may generate a key 
sequence based upon the seed and the random IV. Additionally, a logic 
circuit (23) may be included for generating cipher text based upon the 
key sequence and plain text, and a wireless communications device (25) 
may be connected to the logic circuit (23) and the random IV generator 

(21) for wirelessly transmitting the encrypted message. 

French Abstract 

L' invention concerne un reseau local ou metropolitain sans fil securise 
(10) et leurs dispositifs de communications de donnees (lln) . Ces 
dispositifs (lln) transmettent des textes clairs dans un message crypte 
comprenant un cryptogramme et un vecteur d* initialisation. Le dispositif 
peut comprendre un generateur de graines (20) servant a mettre en oeuvre 
un algorithme unilateral au moyen d'une cle secrete; une adresse du 
dispositif; et une valeur de reference variable pour generer une graine . 
Un generateur (21) de vecteur d ' initialisation aleatoire (IV) peut en 
outre etre inclus pour generer un vecteur d' initialisation aleatoire; et 
un crypteur de cles (22) peut produire une sequence cle basee sur la 
graine et le vecteur d* initialisation aleatoire. De plus, un circuit 
logique (23) peut etre inclus pour produire un cryptogramme base sur la 
sequence cle et le texte clair; et un dispositif de communications sans 
fil (25) peut etre connecte au circuit logique (23) et au generateur (21) 
de vecteur d ' initialisation aleatoire pour transmettre sans fil le 
message crypte. 
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Detailed Description 

Claims 

Detailed Description 

wireless communications device may 
have associated therewith a media access controller (MAC) 
layer, and the changing reference value may be a MAC layer 
sequence number . By way of example, the changing reference 
value may have a size greater than or equal to about 12 bits. 

The use of. . . 

. . . is updated 

with each encrypted message that is sent. In accordance with 
the invention, the changing reference value may conveniently 
be the MAC layer sequence number , although other changing 
reference values may be generated or used for creating the key 
seed. By way of example, the... 

...equal to about 12 bits, which is 

5 the typical size of the MAC layer sequence nximber . By using a 
12-bit changing reference value , for example, a decryption 



dictionary attack would have to be 4096 times as large as. 



Claim 

wireless 

communications device has associated therewith a media access 
controller (MAC) layer; and wherein the changing reference 
value comprises a MAC layer sequence n\iinber . 

4 The device of Claim 1 further comprising an 
integrity checker for generating an integrity. . . 
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Detailed Description 

Claims 

Fulltext Word Count: 4 654 
English Abstract 

A mobile ad-hoc network (10) may include a plurality of nodes including a 
source node (11a) and at least one adjacent node (lib) . The source node 
(11a) may include a wireless communications device for establishing a 
wireless communication link with the at least one adjacent node (lib), a 
plain text source (24), and a second generator (20) for performing a 
one-way algorithm using a secret key for generating a seed. Furthermore, 
the source node (11a) may also include a key encryptor (22) for receiving 
the seed and generating a key sequence based thereon, and a logic circuit 
for generating a cipher text for transmission over the wireless 
communications link and based upon the key sequence and the plain text. 



French Abstract 

invention concerne un reseau ad hoc mobile (10) pouvant comprendre une 
pluralite de noeuds, dont un noeud source (11a) et au moins un noeud 
adjacent (lib) , Le noeud source (11a) peut comprendre un dispositif de 
communication sans fil destine a etablir une liaison de communication 
sans fil avec le noeud adjacent (lib), une source de texte en clair (24) 
et un generateur de valeur de depart (20) servant a executer un 
algorithme unidirectionnel utilisant une cle secrete pour generer une 
valeur de depart. En outre, le noeud source (11a) peut egalement 
comprendre un crypteur de cle (22) destine a recevoir la valeur de depart 
et a generer une sequence de cle sur la base de celle-ci, ainsi qu^un 
circuit logique permettant de generer un cryptogramme en vue d'une 
transmission sur la liaison de communication sans fil et sur la base de 
la sequence de cle et du texte en clair. 
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Detailed Description 

wireless communications 
device may have associated therewith a media access controller 
(MAC) layer, and the changing reference value may be a MAC 
layer sequence number , for example. Further, the seed 
generator may perform the one-way algorithm using the secret,. , 

...is updated with each encrypted message that is 

sent. In accordance with the invention, the changing 
reference value may conveniently be the MAC layer sequence 
niamber , although other changing reference values may be 
generated or used for creating the key seed. 

By way of example, the... 

...or equal to about 12 bits, which is 

the typical size of the MAC layer sequence number . By using a 
12-bit changing reference value , for example, other types of 
message comparison attacks, such as a decryption dictionary 
attack, would. . . 
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Detailed Description 

Claims 

Fulltext Word Count: 4 0811 
English Abstract 

A stand-alone security system controlling access to secured information 
and self-service functionality for a sponsor organization, usable for 
Web-based and IVR-based self-service functions, having five primary 
facets: (1) control of access to secured information (2) enabling access 
to users having indirect and direct relationships with the sponsor 
organization (3) distribution of security administration from a central 
information technology resource to users of the security system, (4) 
support for integration into different environments, and (5) support for 
system integrators. Key components of access control include (1) 
association of a userlD with one specific person, (2) identification of 
keys to data in back-end systems and association of those keys with the 
system users, (3) definition of pieces (segments) of an organization so 
that permissions are granted based on the pieces, (4) definition of user 
roles based on the functionality to which he has been given permission, 
(5) a single sign-on for a user with multiple reasons to use the system, 
and (6) support for direct and indirect assignment of business functions. 

French Abstract 

L* invention concerne un systeme de securite autonome ayant pour mission 
de surveiller I'acces aux informations securisees et a la f onctionnalite 
libre-service dans le cadre d'une organisation de parrainage, off rant des 
fonctions de libre-service sur la Toile et dans un systeme RVI et 
presentant cinq facettes principales: (1) surveillance de I'acces aux 
informations securisees, (2) acces aux utilisateurs ayant un lien 
indirect et direct avec 1 * organisation de parrainage, (3) distribution de 
1 ' administration de securite a partir d*une ressource de technologie 
d* information centrale aux utilisateurs du systeme securise, (4) support 



dans le cadre de 1 ' integration a differents environnements, (5) support 
aux integrateurs de systemes. Les composants cles de la surveillance de 
I'acces sont constitues de (1) 1 ' association d'une identification 
utilisateur avec une personne specif ique, (2) 1 ' identification de touches 
a des donnees dans un systeme de fond et 1 ' association de ces touches 
avec les utilisateurs du systeme, (3) la definition de pieces (segments) 
d*une organisation de maniere que les autorisations donnees dependent des 
pieces, (4) la definition des roles de 1 * utilisateur selon la 
f onctionnalite a laquelle ils ont droit, (5) une seule ouverture de 
session pour un utilisateur ayant de multiples raisons d'utiliser le 
systeme, et (6) le support dans le cadre d* attributions directes et 
indirectes de fonctions commerciales . 
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of Origin may also initiate the PIN/Password change process by posting 
the User ID, PIN / Password and a PIN / Password change value of 
I to a specified variable in the page referenced above. 

6. Defining a PO. . . 
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Claims 

Fulltext Word Count: 734 6 
English Abstract 

A barrier movement operator system having a receiver for receiving (80), 
learning and responding to transmitted rolling code type access codes; at 
least one trained transmitter (30) for operation the system by 
transmitting a rolling code type access code to the receiver; at least 
one learning transmitter (31) for learning the rolling code type access 
code from said trained transmitter in order to operate the system; a 
controller (70) for evaluating the relationship between the learning 
transmitter rolling type access code and the trained transmitter rolling 
type access code; and a device for providing a barrier movement in 
response to access codes received by the receiver, 

French Abstract 

L' invention concerne un systeme d'operateur a mouvement de barriere, dote 
des equipements suivants : recepteur pour la reception (80) et 
1 ' apprentissage de codes d'acces du type code de brassage, et pour la 
reponse a de tels codes; au moins un emetteur deja rompu a ce genre de 
code (30) pour 1 ' exploitation du systeme par le biais de la transmission 
de code du type code de brassage au recepteur; au moins un emetteur en 
apprentissage (31), apprenant du premier emetteur le type de code 
considere pour 1 ' exploitation du systeme; un controleur (70) evaluant la 
relation entre le code d'acces de type code de brassage pour emetteur en 
apprentissage et le code d'acces de type code de brassage pour emetteur 
deja rompu a ce genre de code; et un dispositif assurant un mouvement de 
barriere en reponse aux codes d'acces recus par le recepteur. 
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a fixed switch identification portion. The fixed 1 5 transmitter 
identification is a unique transmitter identification ntamber . The 
rolling portion is a ntunber that changes every transmission in 
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English Abstract 

Controlled access to digital works (104) employs a dynamically updated 
client identification code (214) to uniquely identify the client (100) to 
a server, content identification code (212) to identify digital work, and 
a client software module (210) as an agent of the server (102). An 
encrypted secret (218) unencrypted authorization code allowing access to 
the data content is transmitted to the client (100) . Transmitting an 
encrypted secret (218) to the client (100) over an insecure 
communications network (104) supports encryption of the digital work. A 
database association provides for a software license environment for 
copies of different digital works and at least one machine. Distributing 
supplemental data content (e.g. advertising) from one or many servers 
(102) to a client (100) involves contacting an authentication server to 
determine whether access to the primary digital work should be provided 
to the client (100), retrieving from a data content server the 
supplemental data content and transmitting the supplemental data content 
to the client (100) for display. 

French Abstract 

L' invention concerne un acces controle a des travaux numeriques mettant 
en oeuvre un reseau, qui fait appel a un code d' identification client mis 
a jour de maniere dynamique afin d' identifier un client unique a un 
serveur, un code d' identification de contenu permettant d* identifier un 
travail numerique, et un module logiciel client utilise en tant qu* agent 
du serveur. Un secret crypte ou un code d* autorisation non crypte, 
permettant 1* acces au contenu de donnees, est transmis au client. La 
transmission d'un secret crypte au client dans un reseau de communication 
non securise prend en charge le cryptage du travail numerique. Une 
association de bases de donnees fournit un environnement licence 
d* utilisation logicielle pour des copies de differents travaux numeriques 
et au moins une machine. La distribution de contenu de donnees 
additionnel (par ex. de la publicite) a partir d'un ou de plusieurs 
serveurs a un client implique de contacter un serveur d* authentif ication 
afin de determiner si 1' acces au travail numerique primaire doit etre 



fourni au client, d'extraire d'un serveur de contenu de donnees le 
contenu de donnees additionnel et de transmettre ce contenu de donnees 
additionnel au client pour affichage. 
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identification code as a concatenation of a fixed identifier unique to 
the server, a 
3 

changeable sequence number incremented by the server, and a 
changeable pseudo-random number ; and at every authorizaf ion contact of 
a client with a server, updating the client and. . . 

Claim 

the identification code as a concatenation of a fixed identifier 
unique to a server, a changeable sequence number incremented by the 
server, and a changeable 
pseudo-random number ; and 

at every authorization contact of a client with the server, updating the 
client and. . . 
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English Abstract 

A method of communication between a first node and a second node for a 
system where a plurality of different channels is provided between said 
first and second node. The method comprises the step of calculating an 
integrity output. The integrity output is calculated from a plurality of 
values, some of said values being the same for said different channels. 
At least one of said values is arranged to comprise information relating 
to the identity of said channel, each channel having a different 
identity. After the integrity output has been calculated, information 
relating to the integrity output is transmitted from one of said nodes to 
the other. 

French Abstract 

L' invention concerne un precede de communication entre un premier noeud 
et un second noeud destine a un systeme comprenant une pluralite de 
canaux differents entre le premier et le second noeud. Ledit precede 
consiste a calculer une sortie d'integrite a partir d'une pluralite de 
valeurs, certaines de ces valeurs etant equivalentes pour les differents 
canaux. Certaines desdites valeurs au moins sont concues pour contenir 
des informations relatives a I'identite dudit canal, chaque canal ayant 
une identite differente. Apres le calcul de la sortie d'integrite, les 
informations relatives a la sortie d'integrite sont transmises d*un des 
noeuds precites a 1' autre. 
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... in addition to the secret integrity key and the message. 

In the case where a sequence of ntunbers are used as time varying 
parameters , a mechanism is used which prevents the 
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METHOD AND APPARATUS FOR PRESENTING ANONYMOUS GROUP NAMES 
PROCEDE ET APPAREIL DE PRESENTATION DE NOMS DE GROUPES ANONYMES 

Patent Applicant /Assignee : 

SUN MICROSYSTEMS INC, 901 San Antonio Road, MS UPALI-521, Palo Alto, CA' 
.94303, US, US (Residence), US (Nationality) 
Inventor (s) : 

HANNA Stephen R, 3 Beverly Road, Bedford, MA 01730, US, 
ANDERSON Anne H, 28 Minuteman Road, Acton, MA 01720, US, 
ELLEY Yassir K, 664-B South Street, Waltham, MA 02453, US, 
PERLMAN Radia J, 10 Huckleberry Lane, Acton, MA 01720, US, 
MULLAN Sean J, 2 9 Merrion Strand, Sandymount Dublin-4, IE, 

Legal Representative : 

LEBOVICI Victor B (et al) (agent), Weingarten, Schurgin, Gagnebin & 
Hayes, LLP, Ten Post Office Square, Boston, MA 02109, US, 

Patent and Priority Information (Country, Number, Date) : 

Patent: WO 200135574 Al 20010517 (WO 0135574) 

Application: WO 2000US41197 20001017 (PCT/WO US0041197) 

Priority Application: US 99439246 19991112 

Designated States: AE AG AL AM AT AU AZ BA BB EG BR BY BZ CA CH CN CR CU CZ 
DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ 
LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG 
SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW 
(EP) AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE 
(OA) BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG 
(AP) GH GM KE LS MW MZ SD SL SZ TZ UG ZW 
(EA) AM AZ BY KG KZ MD RU TJ TM 

Main International Patent Class: H04L-009/32 
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English Abstract 

A method and system for granting an applicant associated with a client 
computer (10) in a client-server system access to a requested service 
without providing the applicant with intelligible information regarding 
group membership. The applicant transmits a request for service to an 
application server (12) over a computer network (14). In response, the 
server determines which group or groups are authorized to obtain access 
to the service. The application server then prepares an encrypted message 
which includes the identification of the group or groups having access 
privileges and transmits the encrypted message to the client along with a 
request that the client prove membership in at least one of the groups. 
The client forwards the encrypted message to the group membership server 
(16a) which decrypts the message and prepares a certificate or other 
proof of membership. 

French Abstract 

L' invention se rapporte a un precede et a un systeme permettant 
d'accorder, a un demandeur associe a un ordinateur client (10) d'un 
systeme client-serveur, I'acces a un service demande sans delivrer au 
demandeur des informations intelligibles concernant 1 ' appartenance a un 
groupe. Le demandeur emet une demande de service a un serveur 
d' applications (12) sur un reseau informatique (14). En reponse, le 
serveur determine quel est ou quels sont les groupes autorise(s) pouvant 
acceder au service. Le serveur d ' applications prepare ensuite un message 
chiffre qui contient 1 ' identification du groupe ou des groupes ayant des 
privileges d'acces et emet le message chiffre a destination du client 



ainsi qu'une demande adressee au client pour que celui-ci prouve son 
appartenance a au moins l*un des groupes . Le client transmet le message 
chiffre au serveur qui gere 1 ' appartenance aux groupes (16a) et qui 
dechiffre le message et prepare un certificat ou une autre preuve 
d* appartenance au groupe. 
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group identifier, may comprise a random 
number, a pseudo-random number, a number within a 
sequence of numbers , a date and time value, or any other 
value which changes each time the message generated by 
the group membership server is generated. 

While the above,.. 

...64. The extension may be a random number, 

pseudo-random number, a number within a sequence of 
niimbers , a date and time or any other value , which 
changes each time the value is generated. The extended 
group identifier is then encrypted as illustrated 
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Fulltext Word Count: 12820 
English Abstract 

A technique for secure electronic commerce is disclosed wherein a 
transaction initiator (26) has a primary identifier and a list of 
secondary identifiers stored therein, each of which is valid for a single 
transaction. An identification center (36) receives the primary and 
secondary verification numbers and verifies that the primary number is 
valid and that the secondary number is appropriate for a current 
transaction using the primary number. The transaction initiator comprises 
an enhanced monetary card, such as a credit card or a stored value card, 
which includes an embedded processor, and which provides the secondary 
number for each transaction. The secondary numbers are stored in a lookup 
table, which is also available to the identification center. The values 
in the lookup table are indexed according to a transaction counter and 
are preferably communicated to the identification center without 
encryption or challenge. In some embodiments the transaction initiator 
comprises other types of hardware such as a personal computer in 
conjunction with secondary memory such as a CDr for storing secondary 
numbers and software. 

French Abstract 

L' invention concerne une technique de commerce electronique securisee 
dans laquelle un initiateur de transaction (26) comprend un 
identif icateur primaire ainsi qu'une liste d* identif icateurs secondaires 
memorises dans celui-ci, dont chacun est valide pour une seule 
transaction. Un centre d * identif ication (36) recoit les numeros de 
verification primaire et secondaire et verifie que le numero primaire est 
valide et que le numero secondaire convient a une transaction en cours a 
I'aide du numero primaire. L' initiateur de transaction comprend une carte 
monetaire evoluee telle qu'une carte de credit ou une carte a valeur 
memorisee, laquelle contient un processeur integre, et laquelle fournit 
le numero secondaire pour chaque transaction. Les numeros secondaires 
sont memorises dans une table de consultation, laquelle est egalement 
disponible pour le centre d ' identif ication . Les valeurs dans la table de 
consultation sont indexees selon un compte de transaction et sont de 
preference transmises au centre d' identif ication sans chiffrement ou 
intervention. Dans certains modes de realisation, 1' initiateur de 
transaction comprend d'autres types de materiel tels qu'un ordinateur 
personnel en association avec une memoire secondaire tel qu*un CDr 
destine a memoriser des numeros secondaires et du logiciel. 
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device, referred to herein as a transaction initiator, which is 
identified by a fixed: primary identification naimber and a varying 
secondary identification nximber . An identification center (or 
centers) receives the primary and secondary verification numbers and 
verifies that... and prevents unauthorized use of the card in case it is 
lost, and the secondary number which changes with each transaction. 
It is noted that the term " identification number " is used herein in a 
general way to refer to any type of code. 

It . . . 
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English Abstract 

A method and apparatus for a home monitoring system is provided. The home 
monitoring system may include a command console (10) for monitoring and 
processing the output of sensors (14, 16, 18, 20, 22, 24). The processing 
of the sensors (14, 16, 18, 20, 22, 24) includes (1) providing a history 
of the sensor as an indicator to the operator of the sensor output over 
time; (2) analyzing the trends of the sensor to increase the 
effectiveness of the sensor beyond simply the current sensor output; and 
(3) analyzing the output of one sensor which may impact interpretation of 
a second sensor's output. The monitoring system may also be a 
prescription reminder system. The prescription reminder system may be 
used in homes or institutional medical facilities (assisted living or 
nursing homes) to provide patients with a manner to remind them to take 



pharmaceutical drugs at prescribed times. 



French Abstract 

II s'agit d'un precede et d'un dispositif utilises pour un systeme 
domotique. Ce systeme domotique peut comprendre une console de commande 
(10) pour controler et traiter les sorties de capteurs (14, 16, 18 20, 
22, 24). Le traitement des capteurs (14, 16, 18, 20, 22, 24) vise a (1) 
fournir un historique du capteur qui servira d*indicateur a I'operateur 
sur les sorties du capteur au fil du temps; (2) analyser les tendances du 
capteur pour ameliorer son efficacite au-dela des seules sorties du 
capteur courant; et (3) analyser les sorties d*un capteur susceptibles 
d* avoir une incidence sur 1 ' interpretation des sorties d'un deuxieme 
capteur. Le systeme de surveillance peut egalement servir d* aide-memoire 
pharmaceutique . Cet aide-memoire pharmaceutique peut etre utilise dans 
des centres ou des etablissements de soins (maisons de retraite ou 
maisons de repos) et servir aux patients pour les avertir aux heures 
prescrites de prise des medicaments 
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Claim 

the menus 
appropriately 
void godmenu ( void 

* We're going to 1 of 6 places: 

* (1) Add / Change Parent PIN Number (GOD Mode) 

* (2) Add / Change Child PIN Nvimber (PEON Mode) 

* (3) Add / Change General PIN Niamber (PEON Mode) 

* (4) Configure System 

* (5) Activate/Deactivate Burglar Alarm (if Burglar sensors exist) 

* (6... 
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METHOD AND APPARATUS FOR SECURING SOFTWARE TO REDUCE UNAUTHORIZED USE 
PROCEDE ET DISPOSITIF DE SECURISATION D'UN LOGICIEL, DESTINES A REDUIRE UN 
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Detailed Description 

Claims 

Fulltext Word Count: 6075 
English Abstract 

A method and apparatus for securing software to reduce unauthorized use 
include associating a password (16) or series of passwords (18) with each 
copy or group of authorized software and requiring entry of a first 
password obtained from the developer or authorized representative (24) of 
the software after exchanging registration information (38) . The method 
and apparatus may also require entry of a second password from the series 
associated with the software to continue using the software. A password 
(16) or authorization code series may be associated with each authorized 
copy or with a group of copies such as those distributed to a particular 
organization or site (32) . Preferably, subsequent passwords (16) or 
authorization codes are obtained from an authorized software developer 
(24), manufacturer, or distributor which gathers current information from 
the user (30) to monitor compliance with licensing restrictions. The 
number and frequency of required password updates may be regular or 
irregular. A code which disables the software may be communicated if the 
manufacturer determines that the user (30) is an unauthorized user. 

French Abstract 

L' invention concerne un precede et un dispositif de securisation d'un 
logiciel, destines a reduire un usage non autorise du logiciel, le 
precede consistant a associer un mot de passe (16) ou une serie de mots 
de passe (18) a chaque copie ou groupe de logiciels autorises, et a 
exiger 1* entree d'un premier mot de passe obtenu a partir du developpeur 
du logiciel ou du representant autorise (24) de celui-ci, apres echange 
d' informations d * enregistrement (38). Ce precede et ce dispositif peuvent 
egalement exiger 1' entree d'un second mot de passe a partir de la serie 
associee au logiciel pour la continuation de 1 ' utilisation du logiciel. 
Un mot de passe (16) ou une serie de codes d' autorisation peut etre 
associe a chaque copie autorisee ou a un groupe de copies, tel ceux 
distribues a une organisation ou a un site (32) en particulier. De 
preference, des mots de passe (16) ou codes d' autorisation ulterieurs 
sont obtenus a partir d'un developpeur (24), fabricant ou distributeur de 
logiciels autorise, lequel recueille des informations actuelles a partir 
de 1 'utilisateur (30) afin de pouvoir surveiller si cet utilisateur 
observe les restrictions de 1 ' octroi de licence. Le nombre et la 
frequence des mises a jour des mots de passe exiges peuvent etre 
reguliers ou non. Un code mettant hors service le logiciel peut etre 
communique si le fabricant determine que 1 ' utilisateur (30) est un 
utilisateur non autorise. 

Main International Patent Class: H04L-009/00 
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Fulltext Availability: 
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, . . block 80. A 

series of passwords may be associated with the software 
using an appropriate password generation algorithm with 

parameters which vary based on the particular copy. For 
- 13 

example, a algorithm 'or mathematical equation or formula... 
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English Abstract 

A processor-based transmitter-receiver system and method (10) in which a 
receiver (150) receives coded signals from at least two transmitters 
(figure lA) . The receiver (150) comprises a circuit for receiving a first 
coded signal from a first transmitter (140) and a second coded signal 
from a second transmitter (figure 3A) . Each of the coded signals includes 
a unique identification code and a variable security code (figure 4C) . A 
memory (102, figure 2A) stores at least two codes, each including a 
unique identification code and a variable security code. A processor 
(100, figure 2A) coupled to the circuit and the memory (102), compares 
each of the received coded signals with each of the stored sets of codes. 
The processor generates a valid signal if one of the received coded 
signals matches one of the stored codes. 

French Abstract 

L' invention concerne un systeme et un precede (10) d' emission-reception 
commande par processeur dans lequel un recepteur (150) recoit des signaux 
codes d*au moins deux emetteurs (Fig. lA) . Le recepteur (150) comprend un 
circuit destine a recevoir un premier signal code d*un premier emetteur 
(140) et un second signal code d'un second emetteur (Fig. 3A) . Chacun des 
signaux codes comprend un code d* identification unique et un code de 
securite variable (Fig. 4C) . Une memoire (102, Fig. 2A) enregistre au 
moins deux codes, chacun des codes comprenant un code d' identification 
unique et un code de securite variable. Un processeur (100, Fig. 2A) , 
couple au circuit et a la memoire (102), compare chacun des signaux codes 
recus avec chacun des ensembles de codes enregistres. Le processeur 
produit un signal valide si I'un des signaux codes recus correspond a 
l*un des codes enregistres. 



Fulltext Availability: 
Claims 



Claim 

variable code; 

a memory that stores a second code, said second code including a second 

identification code and a second variable code; 
a second circuit coupled to said first circuit and said memory, said 
second circuit ... first variable code; 

comparing said first code with a stored second code, including a second 

identification code and a second variable code; and 
initiating said alarm indication by said remote device if said first code 
matches . . . 
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English Abstract 

Encoder and decoder microchips suitable for use in remote control 
devices, are disclosed. The encoder microchip comprises means for ' 
performing an encoding function (7) on an identification number (16) 
embedded in the said microchip and a combination of a unit number and a 
stepping counter value, so as to generate a transmission value which is 
only decodable by a related decoding function having access to the same 
identification number. The decoder microchip comprises means for decoding 
the transmission value into a decoded unit number and a decoded counter 
value and means for comparing the decoded counter value with a decoder 
counter value range (17-20). The encoder and decoder microchips are 
provided with means for changing, e.g., in a preferred mode incrementing, 
the counter values by a number greater than one after a period of time, 
subsequent to the encoder microchip being activated or the decoder 
microchip receiving a transmission value. The encoder and decoder 
microchips are also provided with means for synchronizing the decoder 
microchip with a particular encoder microchip which has generated a 
synchronization command. 

French Abstract 

L* invention porte sur des micropuces de codage et de decodage pour 
dispositifs de telecommande . La micropuce de codage comporte des moyens 



permettant d'effectuer une fonction (7) de codage sur un numero 
d' identification inscrit dans ladite micropuce et une combinaison d*un 
numero (16) unitaire et d'une valeur de coinpteur pas-a-pas de maniere a 
produire une valeur de transition ne pouvant etre decodee que par une 
fonction de codage associee ayant acces au meme numero. La micropuce de 
decodage comporte des moyens de decodage des valeurs de transmission en 
un nombre unitaire et une valeur de compteur, et des moyens de 
comparaison de la valeur de compteur decodee avec la plage (17-20) de 
valeurs de compteur du decodeur. Les micropuces de codage et de decodage 
sont pourvues de moyens permettant de faire varier par exemple dans le 
mode prefere par incrementation les valeurs de compteur d*un nombre 
superieur a 1' unite apres un laps de temps suite a 1* activation de la 
micropuce de codage ou a la reception par la micropuce de decodage d'une 
valeur de transmission. Les micropuces de codage et de decodage sont 
egalement pourvues de moyens de synchronisation de la micropuce de 
decodage avec une micropuce particuliere de codage ayant produit une 
instruction de synchronisation. 

Fulltext Availability: 
Claims 

Claim 

1 A system which includes an encoder microchip and a decoder microchip, 
wherein: 

said encoder microchip comprises: 

means for storing an identification number , 

means for storing a counter value , 

means for changing the value of said counter value each time the 
encoder 

microchip is operated, 

encoding means for performing a nonlinear encoding function on said 
counter value using said identification number, so as to generate a 
transmission. . . y 

...scan on signals so as to identify signals 
conforming to a specific format, 

2 An encoder microchip comprising: 

means for storing an identification number ; 
1 5 means for storing a counter value ; 

means for changing the value of said counter value only when the 
encoder 

microchip is operated; 

encoding means for perfort-ning an encoding function on at least said 
counter value using said identification number, so as to generate... 
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English Abstract 

A bilateral system for authenticating remote transceiving stations 
through use of station identifiers (IDs), and through use of passwords 
which are used only one time, and thereafter exchanging messages through 
use of an encrytion key which is changed after each system connection. 
Upon authentication, each of the stations independently creates a secret 
session encryption key (27) in response to the other station *s unique 
station identifier that is exchanged over a communication link in 
cleartext. The station identifiers are used as tags to look up a unique 
static secret (20) and a unique dynamic secret (21) which are known only 
by the two stations, but which are not exchanged over the communication 
link. The secrets are independently combined by a bit-shuffle algorithm 
(22), the result of which is applied to a secure hash function (23) to 
produce a message digest (24). 

French Abstract 

invention concerne un systeme bilateral d* authentif ication de stations 
emettrices situees a distance, au moyen d * identif icateurs de station 
(ID), ainsi que de mots de passe utilises seulement une fois, et 
d'echange ensuite de messages au moyen d*une cle de chiffrage modifiee 
apres chaque connexion au systeme. Lors de 1 ' authentif ication, chaque 
station cree de maniere independante une cle secrete de chiffrage de 
session en reponse au seul identif icateur de station de 1' autre station, 
lequel identif icateur est echange en texte en clair sur une liaison de 
communication. Les identif icateurs de station sont utilises en tant 
qu' etiquettes servant a rechercher un secret statique unique et un secret 
dynamique unique, lesquels sont connus seulement des deux stations mais 
ne sont pas echanges sur la liaison de communication. Ces secrets sont 
combines de maniere independante a I'aide d'un algorithme de melange de 
binaires dont le resultat est applique a une fonction de condensation 
sure, afin de produire un condense de message duquel sont derives la cle 
secrete de chiffrage de session, un mot de passe ne servant qu*une fois 
et destine a la station d*origine, un mot de passe ne servant qu'une fois 
et destine a la station receptrice, ainsi qu'une valeur de changement 
pseudo-aleatoire destinee a la mise a jour du secret dynamique. Ce secret 
dynamique est mis a jour, apres chaque connexion au systeme, au moyen de 
la valeur de changement pseudo-aleatoire et d*une constante primaire, 
provoquant ainsi la mise a jour du condense de message lors de la 
survenue d*une nouvelle connexion au systeme. En outre, les 
identif icateurs de station du systeme peuvent etre modifies par une 
composante du condense de message lors de la survenue d*une nouvelle 
connexion au systeme, afin de constituer une protection supplementaire 
centre toute usurpation d'identite par reproduction d' informations . 

Main International Patent Class: H04L-009/32 

Fulltext Availability: 
Detailed Description 
Claims 

Detailed Description 

Tile present invention provides a combination of authentication and 



encryption in which parameters including system passwords , encryption 
keys, and change values that are used to alter a dynamic secret to 
produce new, pseudo-random system passwords... 

...be exchanged over a network in cleartext, and protects the encryption 
key generator, the system passwords , the encryption key, and the 
change value from public exposure. In addition, system IDs may be 
altered upon tile completion of a... to provide message digest 24, from 
which an originating system password 25, an answering system password 
26, a secret session encryption key 27, and a change value 28 are 
extracted. 

From logic step III, the logic flow process continues to. . . 

...1 12, where the answer system ID, the originating system password 25, 
the answering system password 26, the secret session encryption key 27, 
and the change value 28 are written to RAM I d of the COMPLIter 
system 10. The logic flow. .. bit-mapping to produce a message digest. The 
originating system password 25, the answering system password 26, the 
secret session encryption key 27 and the change value 28 then are 
extracted from the message digest at logic step 21 1 and written. . . 

... 5 area of RAM 13c. 

The originating and answering systems have thus generated the same 
passwords , secret session encryption key, and change value without 
exchanging more than an access request and their respective system 
identifiers in cleartext. 

From. . . 

Claim 

... a pseudo-random message digest comprised of an originating system 
password, a first answering system password , a session encryption 
key, and a change value by applying said first many-to-few bit 
mapping program and said second many-tofew. . . 

...said answering system ID, for altering said one of said n dynamic 

secrets with said change value upon verification of authenticity of 
said second answering system password , for decrypting an encarypted 
answering system password with said session encryption key to provide 
said second answering system password, encrypting said originating 
system password to generate an encrypted originating system password, and 
upon receipt of... 

...and said means for generating said pseudo-random message digest 

comprised of said originating system password , said answering system 
password , said session encryption key, and said change value , and 
upon verifying authenticity of said originating system ID transferring 
said answering system ID over... said originating system and said 
answering system extracting an originating© system password, an 
answering system password , a deterministic and symmetric encryption 
key, 

and a change value from said message digest; 

said originating system and said answering system respectively 

encor/p ting said 

C5 

originating system password and said answering system password with said 
deterministic and symmetric ... set forth in Claim I I above, wherein said 
answering system password, said originating system password , said 



deterministic and symmetric encryption key, and said change value 
are pseudo-random. 

13 The method set forth in Claim I I above, wherein said. . . 

...originating system and said answering system independently extracting an 
originating system password, an answering system password , a secret 
s e s s i on encryption key, 

and a change value from said second pseudo-random result; 
said originating system transmitting said originating system password 
over. . .originating system and said answering system independently 
extracting an originating system password, an answering system password 
, a secret session encryption key, 

1 5 and a change value from said second pseudo-random results- 
encrypting said answering system password with said secret session 
encryption key by 

said answering system to generate a first encrypted passwords- 
transmitting said first encrypted password from said answering system 
to said 

originating systems- 
decrypting and verifying said first encrypted. . . 
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English Abstract 

A first computer system (10) communicates with a second computer system 
(11) by way of a communication link (12) . The first computer system (10) 
includes a central processing unit (1) with I/O interfaces (lb) leading 
to a keyboard processor (2) with a key matrix interface array (3) , System 
ID*s, a static secret, and a dynamic secret are stored on the hard disk 
drive (5b) of the first computer system (10) and are moved to RAM (Id) by 
the processor (la) when the originating and answering stations are being 
authenticated. 



French Abstract 



invention concerne un systeme d* authentif ication et de cryptage de 
1 * information, du type a jeton, pour ameliorer la securite des echanges 
bilateraux chiffres entre un systeme source et un systeme qui repond. 
Sans synchronisation, chaque systeme fournit independamment un condense 
de presentation des messages via un generateur de cle de cryptage, lequel 
utilise les techniques suivantes: brassage binaire, correspondances 
binaires multivoques entre beaucoup-et-peu de bits, et hachage fiable 
pour annihiler toute tentative de dechiffrage des entrees d' informations 
secretes dans le generateur, de decouverte du mot de passe du systeme, de 
la cle de cryptage ou bien des valeurs de changement en sortie extraites 
des condenses de message, suite a une analyse cryptographique ou a une 
serie d'attaques en force par approximations successives. Chaque systeme 
utilise les mots de passe, cles de cryptage et valeurs de changement 
durant une seule connexion systeme avant de recourir a la valeur de 
changement pour actualiser l*un de ces parametres, sans relation 
previsible avec les elements correspondants anterieurs, Chaque systeme a 
plusieurs cycles d ' authentif ication permettant de verifier le systeme qui 
emet, le systeme qui repond, le systeme a jeton, la correspondance entre 
systeme a jeton et systeme qui emet ou systeme qui repond ou les deux a 
la fois, toujours sans devoiler ni les entrees d' informations secretes, 
ni les cles de cryptage ni les valeurs de changement. II existe en outre 
une cle de cryptage deterministe, non previsible, pseudo-aleatoire et 
symetrique, utilisee durant une seule connexion systeme et detruite apres 
coup, ce qui dispense d*utiliser des repertoires de cles. Enfin, les 
identifications du systeme a jeton, du systeme qui emet et du systeme qui 
repond sont modifiables via un element du condense de message, lors de 
1 ' etablissement d'une connexion systeme, de maniere a reduire 
considerablement les risques d*usurpation d^identite sur reexecution. 
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Fulltext Availability: 

Detailed Description 

Claims 

Detailed Description 

The present invention provides a combination of authentication and 
encryption in which parameters including system passwords , encryption 
keys, and change values which are used to produce new, pseudo-random 
system passwords and encryption keys, are used during only a single 
system connection before being replaced with. . . cleartext, and protects 
the static and dynamic secret encryption key generator inputs, and the 
system password , encryption key, and change value outputs from 
exposure. A tamper-resistant security module or token system is used with 
either. . . 

...5 other. The systems independently use such secrets to generate message 
digests from which system passwords , a secret session encryption key, 
and a change value are extracted, and information encrypted with the 
secret session encryption key is exchanged between the systems without 
need for the secret session encryption key or the change value to be 
exposed in any form, or for the system passwords to be exposed in other 
than encrypted form. 

In another aspect of the invention, an... 
...produce a' pseudo-random message digest from which an originating system 
password, an answering system password , a secret session encryption 
key, and a change value are extracted without exposure. 

In a further aspect of the ...occur after each system connection to 
ensure that any originating system password, any answering system 



password , any secret session encryption key, and any change value 
will be used by the originating system and the answering system during 
only a single. ..to provide message digest 24, from which an originating 
system password 25, an answering system password 26, a secret session 
encryption key 27, and a change value 28 are extracted. 

From logic step III, the logic flow process continues to. . . 

...1 12, where the answering system ID, the originating system password 25, 
the answering system password 2 6, the secret session encryption key 27, 
and the change value 28 are WTitten to RAM I d of the com puter 
system 10. The logic. . .bit mapping to produce a message digest. The 
originating system password 25, the answering system password 26, the 
secret session encryption key 27 and the change value 28 then are 
extracted from the message digest at logic step 21 1 and written... 

...an area of RAM 13c. 

The originating and answering systems have thus generated the same 
passwords , secret session encryption key, and change value without 
exchanging more than an access request and their respective system 
identifiers in cleartext. 

From. .. system, they are not exposed outside of the originating and 
answering systems. In addition, the passwords , change value , and 
secret session encryption key are used only during a current system 
connection. The dynamic ... secrets and encryption key generator necessary 
for generating the originating system password 25, answering system 
password 26, secret session encryption key 27, and change value 28. 

Referring to the functional block diagram of Figure 6, a token system 300 
is... to the result to generate a message digest. At logic step 409, an 
originating system password 25, an answering system password 26, and 
a change value 28 are extracted frorn the message digest and written 
into operating RAM 312b. The step... flow process continues to logic step 
560 where the originating system password 25, answering system password 
26, secret session encryption key 27, and change value 28 are 
extracted from the message digest, and written along with the token ID 
into... but the secrets are never revealed by one system to the other. In 
addition, the passwords , change value , and secret session 
encryption key are used during only a single system connection. 

The dynamic. .. authentication. Once a system connection is completed. 

all components of an authentication exchange (originating system 
password , answering system password , session encryption key, and 
change value ) are changed to new non-recurring values having no 
known relationship to the previous values. Thus, an... 

Claim 

... a pseudo-random message digest comprised of an originating system 
password, a first answering system password , a session encryption 
key, and a change value by applying said first many-to-few bit 
mapping program and said second niany-to digest comprised of said 
originating system password , said answering system password , said 
session encryption key, and said change value , for decrypting said 
encrypted token ID with said one of said n current encryption keys 
upon receipt from said originating system over said communication link 
means, and upon verifying. . .pseudo random result; said token system and 
said answering system independently extracting an originating system 
password , an answering system password , an encryption key, and a 



change value from 

said second pseudo-random result; 

bilaterally authenticating said originating system and said answering 
system by said originating system encrypting said originating system 
password with said encryption key to produce a first encrypted password, 
said... token system and said answering system independently extracting an 
originating system password, an answering system password , a 
deterministic and symmetric encryption key, 

•I 5 and a change value from said second pseudo-random result; 

encrypting said answering system password with said deterministic and 
symmetric encryption key by said answerin system to generate a first 
encrypted password; 
9 

transmitting said first encrypted password from said answering system 
to said 

originating system; 

decrypting said first encrypted password by. . . 
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English Abstract 

The system (10) has a token (12), a token processor (14), and a host 
processor (16) . The token (12) may be a "dumb" token, and contains a 
memory (18) that contains a secret user code (22) and a read/write 
element (20). The memory (18) may also contain a public code (24), an 
algorithm (26), and a time-varying value (28). The token may have a 
numeric keypad (30) for an imput device. 

French Abstract 

Ce systeme (10) possede un jeton (12), un processeur (14) de jeton et un 
processeur central (16) . Le jeton (12) peut etre un jeton "non 
intelligent" et contient une memoire (18) contenant elle-meme un code 
utilisateur secret (22) et un element de lecture/ecriture (20) . La 
memoire (18) peut egalement contenir un code public (24), un algorithme 
(26) et une valeur (28) variable en temps. Le jeton peut comporter un 
bloc de touches numeriques (30) pour un dispositif d' entree. 
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Claims 

Detailed Description 
input which 

is utilized along with the secret code read from token 12, 
the time- varying value and the PIN in an algorithm to 
generate an appropriate one-time nonpredictable coded 
response (step 78). This... 

Claim 

algorithm at 
the token processor; 

C) the token processor receiving a user inputted secret 
personal identification code ; 

d) the token processor utilizing the secret user code, 

time- varying value and secret personal identification code 
the algorithm to obtain a one-time nonpredictable code; 

e) the token processor transmitting ... algorithm at 
the token processor; 

c) the token processor receiving a user inputted secret 
personal identification code ; 

d) the token processor utilizing the secret user code, 

time- varying value and secret personal identification code 
the algorithm to obtain a one-time nonpredictable code; 

e) the token processor transmitting. . . 



File 347:JAPIO Nov 1 97 6-2003/Nov (Updated 040308) 

(c) 2004 JPO & JAPIO 
File 350:Derwent WPIX 1963-2004 /UD, UM &UP=200419 

(c) 2004 Thomson Derwent 

Set Items Description 

51 402961 PIN OR PINS OR PID OR PIDS OR UIN OR UINS 

52 6783 (SEQUENCE? ? OR SERIES) (IN) (NUMERIC? OR NUMBER? ? OR NUMER- 

AL? ? OR ALPHANUMERIC?) 

53 14274 PASSWORD? OR PASSCODE? OR PASSKEY? OR PASSNUMBER? OR PASSV- 

ALUE? 

54 ' 1392 PASSO (WORD? ? OR KEY? ? OR CODE? ? OR NUMBER? ? OR VALUE? 

? OR IDENTIFIER? OR ID OR SEQUENCE?) 

55 33689 (ID OR IDENTIFY? OR IDENTIFICATION? OR IDENTIFIE? ? OR AUT- 

HENTICAT? OR ACCESS OR AUTHORIZ? OR AUTHORIS?) () (CODE? ? OR N- 
UMBER? ? OR SEQUENCE) 

56 3 COENCYPHER? OR COENCIPHER? OR COCYPHER? OR COCIPHER? OR CO- 

ENCRYPT? OR COINCOD? OR COENCOD? 

57 5 C0() (ENCIPHER? OR ENCYPHER? OR ENCOD??? ? OR INCOD??? ? OR 

ENCRYPT?) 

58 359258 VARIABLE? ? 

59 3793 S8(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR SUP- 

PLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR AUGME- 
NT?) 

510 59403 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (CHANGEAB? OR CH- 
ANG??? ? OR VARY? OR VARIE? ? OR INCONSTAN? OR INDETERMINAT? ) 

511 3332 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (UNFIX?? ? OR DY- 
NAMIC?) 

512 631 S10:S11(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR 

SUPPLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR A- 
UGMENT?) 



S13 


3610 


(FURTHER OR SECOND OR PAIR?? ?) (1W)S8 


S14 


111 


S1:S5 AND (S6:S7 OR S9 OR S12) 


S15 


1317 


S1:S5 AND SlOrSll 


S16 


52 


S1:S5 AND S13 


S17 


187542 


ENCRYPT? OR ENCIPHER? OR ENCYPHER? OR ENCOD???? ? OR INCOD- 




???? ? 


S18 


5 


S14 AND S17 


S19 


39 


S15 AND S17 


S20 


1 


S16 AND S17 


S21 


30923 


IC='H04L-009' 


S22 


10581 


IC='G09C-001' 


S23 


56 


S14:S16 AND S21:S22 


S24 


8689 


MC=»W01-A05B' 


S25 


2055 


MC=»W01-C02B6A' 


S26 


4126 


MC='W01-A05* 


S27 


196 


MC='W01-C07A3* 


S28 


2557 


MC=»W02-L' 


S29 


1013 


MC='W01-C08F' 


S30 


23 


S14 :S16 AND S24 :S29 


S31 


83 


S18:S20 OR S23 OR S30 


S32 


83 


IDPAT (sorted in duplicate/non-duplicate order) 


S33 


83 


IDPAT (primary/non-duplicate records only) 


S34 


81 


S33 NOT (PROTEIN? OR DIODE? OR DNA) 


S35 


81 


S34 NOT (POLYPEPTIDE? OR GENE? ? OR ACID? ? OR CDNA) 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide an efficient packet encryption key in 
which the computation time for encryption /decryption is decreased and 
even when a packet is lost or the like, it can be recovered. 
SOLUTION: This method comprises a step for generating an S-vector, a step 
for setting a sequence nvunber , a step for setting a first variable, a 
step for setting a second variable , a step for setting a byte sequence 
number , a step for calculating a third variable from the second 

variable and the byte sequence number , a step for incrementing the 
byte sequence number , a step for calculating a fourth variable by 

adding the first variable to the value within the S-vector by the third 
variable, a step for locating an encryption byte and also a step for 
taking the exclusive ORing to generate the byte based on the third variable 
and the value within the S-vector by the fourth variable. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide a FAX information supply device that can 
prevent others from knowing the entirety of a password at a time, make it 
more difficult for others to know the password and also enable a normal 
user to know unauthorized use of services by others when the others use the 
services unjustly. 



SOLUTION: A password used by a user for an access to an information 
supply system comprises a fixed portion at which the user inputs the same 
value every time the user accesses and a variable portion at which the user 
inputs a value varying every time the user accesses. A second portion 
of a password which will be used by the user for a next access to the 
information supply device is generated, and both the second portion thus 
generated and supply information are transmitted to the user. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To provide a dynamic password control system 
conducting an authentication process for a user by using a password 
having a dynamically changed value time-wise and not known to third 
persons easily. 

SOLUTION: This dynamic password control system is provided with a 
stationary user terminal, an authentication server connected via a 
communication network, and a portable password calculating device. The 
stationary user terminal transmits a card ID, and the authentication server 
receiving the card ID calculates the dynamic password dynamically changed 
according to the elapsed time based on the password parameter inherent to 
the card ID and the elapsed time to determine the present password 
corresponding to the card ID. The portable password calculating device 
calculates the dynamic password by the same calculation logic as the 
authentication server to determine the present password when the elapsed 
time is inputted. 



COPYRIGHT: (C) 2001, JPO 



35/9/8 (Item 8 from file: 347) 

DIALOG (R) File 347: JAPIO 

(c) 2004 JPO & JAPIO. All rts. reserv. 

06949967 **Image available** 

TERMINAL AUTHENTICATION SYSTEM BY DYNAMICALLY VARIABLE AUTHENTICATION 
NUMBER GENERATING METHOD 



PUB. NO.: 2001-177519 [JP 2001177519 A] 

PUBLISHED: June 29, 2001 (20010629) 
INVENTOR(s): GOHARA KEIJI 



KITAGAWA TAKATSUNA 

TOYOOKA HIROAKI 

MATSUMOTO MITSUYOSHI 
APPLICANT (s) : HITACHI LTD 
APPL. NO.: 11-358530 [JP 99358530] 
FILED: December 17, 1999 (19991217) 

INTL CLASS: H04L-009/32 ; G09C-001/00 / H04L-009/26 



ABSTRACT 

PROBLEM TO BE SOLVED: To make it difficult to solve an authentication 
system even from an authentication number string exchanged between an 
authentication device and a device to be authenticated and also to make it 
difficult to forge the device to be authenticated. 

SOLUTION: The device to be authenticated and the authenticating device hold 
a near authentication number ( authentication number subset) of a 
plurality of times which makes an authentication success about the device 
to be authenticated, the device to be authenticated calculates a new 
aperiodic authentication number on the basis of the authentication 

number subset of the device to be authenticated by a function composed of 
a plurality of terms with which an aperiodic progression allocated to the 
device to be authenticated is obtained, the newly calculated 

authentication number is transmitted to the authenticating device, the 
authenticating device also calculates a new aperiodic authentication 

n\imber by the function composed of the plurality of terms with which the 
aperiodic progression allocated to the device to be authenticated is 
obtained on the basis of the authentication number subset of the device 
to be authenticated, and the device to be authenticated is authenticated as 
proper in such a manner that the calculation result of the authentication 
device coincide with the authentication number transmitted from the 
device to be authenticated. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To make theft of a device difficult by simple 
arithmetic by enciphering a transmission code with divided ID codes 
and an additional code. 

SOLUTION: A code storage area 2 of a transmitter 1 for keyless entry is 
provided with an ID code storage area 3, where write is disabled except 
for special timing, a rolling code storage area 4 to add *1' each time of 
keying and an additional code area 5 for storing codes to be added to both 
the enciphered ID code and the rolling code. Concerning the codes 

stored in the storage areas, a processor group 6 has a function for 



dividing the ID code , the rolling code and the additional code, a 

function for calculating the transmission start position of the ID code 
from the value of the rolling code and a function for changing the 
nximber of additional codes which correspond to the value of the divided 
additional code shown by the value of the rolling code. Then, the 
transmission code is enciphered by the divided ID codes and the 
additional codes. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To make illicit decipherment difficult and to make 
the high-speed processing with an electronic computer possible by forming 
two pseudo-random number sequences , changing the sequence of the one 
pseudo-random number sequence in accordance with the value of another 
pseudo-random niimber sequence and outputting the pseudo- random mimber 
sequence after a sequence change as a cipher key. 

SOLUTION: The pseudo-random number RF is set at RX=RX0 for the purpose of 
initialization. The pseudo-random number RX is stored in an array element 
V[0] and a subscript I for storing the pseudo-random number RX formed in 
the subsequent processing into the array V is initialized to 1=1 {S402, 
S403) . The next pseudo-random number RX is calculated and is stored in the 
array element V[I] of the subscript I and further the subscript I of the 
assigning the array element for storing the pseudo-random 
be calculated next is added {S404 to S406) . A pointer P is 
the word at the top of plaintext /ciphertext data and the 
pseudo-random number are calculated (S409) . Next, the 
obtain the agitation random numbers agitating the first 
number sequence is executed and Bellman processing is 



array V for 
number RX to 
positioned at 
first/second 
processing to 
pseudo-random 

executed with the fetched pseudo-random number Rn as a key. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To prevent illegal use by any one other than a user, 
by changing rolling codes on the basis of a key code to encoded rolling 
codes and encoding ID codes by use thereof. 



SOLUTION: The exclusive logical sum of the constant X(sub 1) of x(sub 1) 
lot n\ainber in the changed table of rolling code and the rolling code A 
is operated. Next, a well-known M-series operation is carries out. 
Thereafter, the operation of exclusive logical sum by use of the constant 
code X after the x lot number and the M-series calculation are repeated 
n-times to encode the rolling code A and produce an encoded rolling 
code. And since the key code is written in the production process of 
vehicles, the key code is kept secret until the production process. Or if 
the key code is set at random in the production, even time designer who has 
contrived the logic can not decipher the encode of the rolling code A. 
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ABSTRACT 

PROBLEM TO BE SOLVED: To make decoding difficult and to securely 
synchronize passwords by generating a password key based on information 
which is set at every connection of a communication line between a base 
station and a moving station. 
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SOLUTION: Ciphering is executed by using the key generated in a key 



generation part 200. The key generation part generates the password key 
based on information or the like which are set every time when the 
communication line is connected between the base station and the moving 
station. The password keys taking dynamic values different in every 
communication connection or every arbitrary time are made by generating the 
key from information. Random numbers outputted from a random number 
generation circuit part 202 are fed back and used as initial values for 
generating the next random numbers. The generated random numbers and data 
to be transmitted are operated in an exclusive OR operation part 203 and a 
password sentence of generated. 
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Card authentication method e.g. for integrated circuit card, involves 
comparing fixed PIN code and variable authentication number stored 
in card and controller, based on which card is authenticated 

Patent Assignee: ^4ATSUSHITA ELECTRIC WORKS LTD (MATW ) 

Number of Countries: 001 Number of Patents: 001 

Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 
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Priority Applications (No Type Date) : JP 2002154327 A 20020528 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
JP 2003346097 A 6 G06K-017/00 

Abstract (Basic) : JP 2003346097 A 

NOVELTY - An overwriting unit (4) overwrites authentication 
nimber varying according to authentication frequency of the card, in 
respective recording areas (6,7) of a card (3) and a controller (1), 
during card authentication. An authentication unit (5) compares fixed 
PIN code and authentication number recorded in card and 
controller, and authenticates the card if the compared numbers are in 
agreement with each other. 

USE - For authenticating cards such as integrated circuit (IC) card 
and magnetic card. 

ADVANTAGE - Prevents unauthorized access of the card, while 
allowing to know the access frequency of the card at the time of 
authentication, hence ensures security effectively. 

DESCRIPTION OF DRAWING (S) - The figure shows a block diagram 
explaining the card authentication process. (Drawing includes 
non-English language text) . 

controller (1) 

card (3) 

authentication number overwriting unit (4) 
authentication unit (5) 

recording areas of card and controller (6,7) 
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Abstract (Basic) : KR 2003059500 A 

NOVELTY - A pseudo-random generator using a block password having 
an SPN structure and a method thereof are provided to improve a 
stability side by changing a key value through an update algorithm 
each time a random is generated. 

DETAILED DESCRIPTION - A reseeding module (102) collects a noise 
suited to each platform. The reseeding module (102) generates a key 
value based on noise information. The key value is used as an input of 
a random function. A pseudo-random generating module (104) includes two 
random function value converters. The pseudo-random generating 
module (104) uses the key value and a state value as inputs of the first 
random function value converter to generate the first random function 
value. The pseudo-random generating module (104) uses the first random 
function value and the key value as inputs of the second random 
function value converter to generate the first random function value to 
generate the second random function value. The pseudo-random generating 
module (104) outputs the second random function value as a pseudo-random 
value . 
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Authentication code generation method for information access 
management, involves retrieving initial generation value of previous 
codes to obtain PIN and combining stored secret with generation value 
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Abstract (Basic) : US 20030105964 Al 

NOVELTY - A dynamic value associated with a time interval is 
determined. An initial generation value indicating the number of 
previous authentication code generation is retrieved to define 
personal identification number ( PIN ) . An authentication code 
is generated by combining the stored secret, dynamic generation 
value and the PIN . 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
authentication code generating system. 

USE - For generating user authentication codes while accessing 
information related to financial and health services through desktop 
computer, laptop computer and personal digital assistant (PDA) . 

ADVANTAGE - Prevents risk of unauthorized access completely as the 
multi generation values are defined periodically and hence reliable 
secrecy is maintained during code generation. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
authentication code generation system. 
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Priority Applications (No Type Date) : CN 2002139458 A 20021001 
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Abstract (Basic): CN 1416237 A 

NOVELTY - The cipher code and the cipher text in the enciphering 
system are obtained through the corresponding data of the dynamic 
time parameter and the dynamic sequence number parameters , by 
combining specific cipher code and using the enciphering algorithm. 
The said corresponding data of the dynamic time parameter and the 
dynamic sequence number parameter are generated automatically in 
the system, and obtained at the moment when the relevant event of the 
enciphered object occurs. The method is suitable for the electronic 
file to generate the cipher code and the cipher test, for use of the 
electronicsignature and the electronic stamp to signl the e-text 
contract, the electronic bill as well as the anti-fraud of the products 
using the cipher code. 
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Method for generating random number for subscriber authentication in 
wireless communication system 
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KR 2003014510 A 1 H04L-009/22 

Abstract (Basic) : KR 2003014510 A 

NOVELTY - A method for generating random number for subscriber 
authentication in wireless communication system is provided to generate 
a random number for a subscriber authentication which is used in a 
subscriber authentication and decoding/integrity key in order to serve 
an information security in a core network authentication center of a 
wireless communication system. 

DETAILED DESCRIPTION - An internal state value and a user password 
key are calculated by a CASUMI method. A change value of the 
internal state value and the user password key and an operator key 
are operated by an XOR and KASUMI method. Data according to the XOR and 



KASUMI-operation and the user password key and a random number 
constant value are operated by an XOR and KASUMI method to generate a 
random number row. Data according to the KASUMI-operation and the data 
according to the XOR and KASUMI-operation, and the operator key are 
operated by XOR and KASUMI method to determine the result as the random 
number constant value, 
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Abstract (Basic): US 6370649 Bl 

NOVELTY - A internal hash value, generated is based on a 
changeable seed value distinct from a previous fail safe password , 
The fail safe password is decrypted using a public key corresponding 
to private key to provide an external hash value. The user is permitted 
to access the computer system only when the internal and external hash 
values are equal. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for a 
computer system. 

USE - For allowing a user to access a password protected computer 
system. 

ADVANTAGE - Allows a manufacturer to securely supply a single use 
password to users who lose or misplace a system password . Provides a 
hardened password security infrastructure that discourages theft of 
computer effectively. 

DESCRIPTION OF DRAWING (S) - The figure shows the flowchart 
illustrating a procedure for verifying a password upon power-up of 
the computer system. 

pp; 13 DwgNo 2 A/ 5 

Title Terms: PASSWORD ; PROTECT; COMPUTER; SYSTEM; ACCESS; PERMIT; METHOD; 
PERMIT; USER; ACCESS; COMPUTER; INTERNAL; HASH; VALUE; EQUAL; EXTERNAL; 
VALUE 

Derwent Class: TOl; WOl 



International Patent Class (Main) : H04K-001/00 
File Segment: EPI 

Manual Codes (EPI/S-X) : TOl-DOl; T01-H01C2; T01-J12C; W01-A05B 
? t35/9/40-42,4 4, 4 8, 62, 65,70-72, 75 

35/9/40 (Item 17 from file: 350) 

DIALOG (R) File 350:Derwent WPIX 

(c) 2004 Thomson Derwent . All rts. reserv. 

014143604 

WPI Acc No: 2001-627815/200173 
XRPX Acc No: NOl-468139 

Releasing a coded data file involves the use of equipment identifiers 

established by using enciphered codes and keys passed between a local 

computer system and a central station 
Patent Assignee: MANNESMANN VDO AG (MANS ); 

(THOO-I) 

Inventor: DRIJFHOUT T; THOONE M 
Number of Countries: 028 Number of Patents: 
Patent Family: 

Applicat No 
EP 2000106809 
AU 200128029 

US 2001823875 
CN 2001112437 



DRIJFHOUT T (DRIJ-I); THOONE M 



004 



Patent No Kind 
EP 1139196 Al 
AU 200128029 A 
US 20010047341 Al 
CN 1315716 A 



Date 
20011004 
20011004 

20011129 
20011003 



Kind 
A 
A 
A 

A 



Date 
20000330 
20010315 

20010330 
20010330 



Week 
200173 
200173 

200202 
200205 



B 



Priority Applications (No Type Date) : EP 2000106809 A 20000330 
Patent Details : 

Patent No Kind Lan Pg Main IPC Filing Notes 
EP 1139196 Al G 16 G06F-001/00 

Designated States (Regional) : AL AT BE CH CY DE DK ES FI FR GB GR IE IT 

LI LT LU LV MC MK NL PT RO SE SI 
AU 200128029 A G06F-012/14 
US 20010047341 Al G06F-017/60 
CN 1315716 A G06K-019/073 



Abstract (Basic) : EP 1139196 Al 

NOVELTY - The method involves passing an equipment identifier from 
a local computer system to a central station, computing a new equipment 
identifier using a change code, specifying a first enciphered code 
using a key, specifying a second enciphered code using the data file 
identifier, passing the enciphered codes to the local system, 
computing the new equipment identifier, the key and data file 
identifier in the local system and releasing the data file. 

DETAILED DESCRIPTION - The method involves passing an equipment 
identifier (ID(i-l)) from a local computer system to a central station, 
computing a new equipment identifier (ID(i)) from the equipment number 

and a change code, specifying a first enciphered code ( PIN ) 
using the computed code and a key (k), specifying a second enciphered 
code (ACW) using the data file identifier and the key, passing the 
enciphered codes to the local system, computing the new equipment 
identifier in the local system from the stored identifier and the 
change code, computing the key from the first enciphered code and the 
equipment identifier, computing the data file identifier (AC) from the 
second enciphered code and the key and releasing the data file for 
use by the local system. INDEPENDENT CLAIMS are also included for the 
following: a system for managing and releasing access rights to data 
files . 

USE - For managing and releasing access rights to data files form 
use by only one or a limited number of local computer systems. 



ADVANTAGE - Ensures that a computer program or data file is only 
accessed by an authorized user and enables the release of only single 
programs or data files for a defined user. 
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Patent Details: 
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Abstract (Basic) : JP 2001086110 A 

NOVELTY - A packet generator (11) generates several data packets. 
An encryption key setting unit (13) generates dummy random n\mber 
sequence to change the encryption key for every packet as its 
initial value. A stream encryption unit (12) performs encryption o 
portion of packet information using binary dummy random niomber 
sequence . 

DETAILED DESCRIPTION - A key storing unit (14) stores the 
encryption key information as a part of packet information. A packet 
transmitting unit (15) sequentially transmits the packets each 
consisting data portion and encryption key information. 

USE - For stream encryption system, 

ADVANTAGE - Synchronization of encryption key modification is no 
needed for the encryption key modification. Hence, problem due to th 
slippage of synchronization and hardware loading are avoided. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the packet transmission device. (Drawing includes non-English language 
text) . 

Packet generator (11) 

Stream encryption unit (12) 
Encryption key setting unit (13) 

Key storing unit (14) 

Packet transmitting unit (15) 
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Password disclosing method in selective call device, involves receiving 
timed input to vary preset value representing specific time period, 
and presenting secured password when the value reaches a threshold 
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Abstract (Basic) : WO 200119064 Al 

NOVELTY - The method involves storing a secured password and 
preset value representative of a period of time. A timed input is 
received, and the preset value is varied in response to the timed 
input. The secured password is presented in response to the preset 
value reaching a threshold value. 

USE - For disclosing password in selective calling device. 

ADVANTAGE - Prevents users of discounted selective call devices 
from changing service providers during the contract period. Provides 
users of the selective call device with the option or freedom to change 
services if they desire at the end of the contract period. 

DESCRIPTION OF DRAWING (S) - The figure shows the electrical block 
diagram of selective call device employee password disclosing method. 
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Authenticating system for confirming user identity for carrying out 
transactions over Internet, uses dynamic personal identification 
number ( PIN ) to provide improved security 
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Abstract (Basic) : CA 2291430 Al 

NOVELTY - A new dynamic PIN comprising an event identifier and a 
pseudo-random number sequence identifier, is generated for each 
transaction, by a user card (12), by generating a distinct 
pseudo-random number based on a private seed and a previous random 
number stored by the user card and incrementing the value of the event 
identifier. The PIN is then transmitted to an authentication server 
(18) along with a preestablished user account name, 

DETAILED DESCRIPTION - The authentication server retrieves the 
private seed, and previous event and pseudo-random identifiers from a 
secure account database (20) associated with the account name. The 
authentication server ensures that the stored event identifier 
corresponds to the event identifier provided by the user by 
incrementing the event identifier if necessary and by generating a 
successive pseudorandom identifier each time the event identifier is 
incremented. Once the event identifiers correspond, the latest 
pseudo-random identifier is compared with the pseudo-random identifier 
transmitted by the user within the PIN . If authentication is 
successful, the authentication server will then complete the financial 
transaction associated with the user's request. 

An INDEPENDENT CLAIM is also included for a method of 
authenticating identity of user. 

USE - For providing transactional security over Internet. 

ADVANTAGE - Provides simple, relatively inexpensive and easy to use 
transactional security system which does not transfer any sensitive 
data over Internet and which does not require installation of 
complicated software or hardware by either customer or merchant. 

DESCRIPTION OF DRAWING (S) - The drawing shows schematically the 
basic components of authenticating system for confirming identity of 
user. 

User card (12) 

Authentication server (18) 

Secure account database (20) 
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Abstract (Basic) : WO 9944332 A 

The method involves entering a number sequence which is only 
known by the user of the service. The n\imber sequence is 
transmitted transparently in the communication network via exchange 
nodes (SSP) to a service control point (SCP) at which the number 
sequence is evaluated. The number sequence is supplemented by a 
changeable further parameter before the transmission through the 
communication network. 

The sequence is encoded using a mathematical algorithm. The 
result is transmitted to the service control point using 
multi-frequency dialling. An authentication is carried out in the 
service control point. Preferably, the telecommunication network is an 
intelligent network. 

USE - E.g. for credit card calling. 

ADVANTAGE - Provides better security against monitoring. 
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Fraud-proof equipment identification method - using equipment number and 
time variable data part based on pseudorandom number derived from initial 

value and changed by clock with clocking rate matched to shortest 
anticipated call-up sequence 
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Abstract (Basic) : DE 19523654 A 

The method involves using an equipment number (10) and a time 
variable data part based on a pseudorandom number (P) which can be 
derived from an initial value in a predefined manner. The pseudorandom 
number is changed each time it is called up. 

The pseudorandom number is changed by a clock, whose clocking 
rate is matched to the shortest anticipated call-up sequence, and is 
prepared with the equipment number for call-up. The pseudorandom number 
can be used as a key to encode the equipment number. It can also be 
extracted from a longer pseudorandom number. 

ADVANTAGE - Increases security against cracking of identification 
codes . 
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computer processor which executes series of steps to generates authorised 
combination which is compared with that input by user, and opens lock if 
match occurs 
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Abstract (Basic) : EP 649957 A 

The electronic combination lock has an input dial for entering 
combination numbers into the lock, and a display which indicates the 
numbers. An electronic controller receives combination sequences and 
compares them with the authorised sequence . The electronic 
controller has an encryption device which encrypts an input 
combination sequence, and generates a combination derived from the 
predetermined data. A comparator evaluates the entered combination with 
the generated combination, and generates an opening signal. 

The encryption generator responds to the last accepted 
combination, a parameter unique to the lock, a master combination and a 
variable value. The variable value is changed in a predictable 
manner for each opening of the lock and the result is manipulated to 
generate the authorised combination, 

USE/ADVANTAGE - E.g. for anti-theft device or secure container . Each 
new opening of lock requires new combination from computer. 

Dwg. 2/8 

Abstract (Equivalent): US 5488660 A 



An electronic combination lock comprising; 

an input dial for inputting numbers of a combination into said 
lock; 

a display for displaying numbers; 

an electronic control means for receiving said numbers of said 
combinations and for comparing said numbers with numbers of an 
authorized combination; 

said electronic control means including: 

an encrypting combination generator responsive to an entered 
combination for encrypting predetermined data and for generating a 
combination derived from said predetermined data; 

a comparator for comparing said entered combination with said 
generated combination and responsive to a compare equal to generate a 
signal permitting said lock to open, 

said encrypting and generating means responsive to a last 
accepted combination, a parameter unique to said lock, a master 
combination, a variable value, said variable value changed in a 
predictable manner upon each opening of said lock to form a result and 
manipulation of said result, to generate said authorized combination. 
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Abstract (Basic) : EP 459781 A 

The encoder microchip comprises a non linear encoding unit for 
embedding an encoded identification number in the microchip and a 
combination of a unit number and a stepping counter value. This action 
generates a transmission value which is only decodable by a related 
decoding function having access to the same identification number . 
When a synchronisation command is given, a counter value is generated 
which is encodable together with the synchronisation command, to 
generate a sync, transmission value which will facilitate sync, of a 
related decoder microchip having the same identification number . 

The decoder microchip performs a format scan on ten signals to 
identify and respond to valid transmission values. 

ADVANTAGE - Increased security without reducing user friendliness. 
(17pp Dwg.No.1/6 

Abstract (Equivalent) : EP 459781 B 

An encoder for an access control system, comprising: means (6) 
for defining an identification number for an encoding operation; 
means (4, 5) for storing a counter value; means (7) for performing an 
encoding function using the identification nxamber , on data 
comprising the counter value, to generate an encoded value therefrom 
which can be decoded by a related decoding function using a related 
identification niimber to yield the counter value; and means (2, 4) 
for changing the counter value in association with each operation 
of the encoder , to vary the encoded value independently of 
time . 

(Dwg.1/6 

Abstract (Equivalent) : US 5517187 A 

A system which includes an encoder 
microchip, wherein : 

said encoder microchip comprises: 
means for storing an identification 
means for storing a counter value, 

means for changing the value of said counter value each time 
the encoder microchip is operated, and 

encoding means for performing a nonlinear 
said counter value using said identification 
generate a transmission value; 

said decoder microchip comprises: 

means for storing a second identification nnmber , 
means for receiving said transmission value from said encoder 
microchip, 

means for performing a decoding function on said transmission value 
using said second identification number , so as to generate from 
said transmission value a decoded counter value, 

means for storing a second decoded counter value obtained from the 
decoding of a transmission value of a previous transmission by said 
means for performing a decoding function; and 

means for performing a format scan on signals so as to identify 



microchip and a decoder 



number 



encoding function on 
number , so as to 



signals conforming to a specific format. 
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Abstract (Basic) : EP 451056 A 

The portable electronic unit has an acoustic emitter (10) and a 
driver (12) generating tones corresponding to keys on a telephone, and 
a circuit (34) that forms a digital message (M) . The message generator 
has a memory (14) containing an identification code (N) and a key 
(C) . The digital message changes at each use and is set by the values 
of the code and key. 

A circuit (16) translates the number stream to signals that e 
control the tones delivered by the acoustic emitter. 

ADVANTAGE - - Increased security against misuse in systems 



allowing payment for services over telephone. (7pp Dwg.No.1/2 
Abstract (Equivalent): EP 451056 B 

Electronic telephone device including: an acoustic transmitter 
(10), a generator (12) for controlling an acoustic transmitter and able 
to generate tones falling within the telephone band, a device (34) able 
to form a digital message (M) formed of a set of niimbers changing 
on each use of the device, said device comprising: a memory (14) 
containing a first identification code (N) and a second or service 
key (C) code linked to the telephone system in which the device is used 
and an electronic and logic circuit (16) connected to the memory (14) 
and delivering th message controlling the generator (12), this message 
depending on the firs and second codes, each number of the message 
controlling the generator (12) so as to have the acoustic transmitter 
(10) transmit a particular tone, this transmitter thus transmitting a 
sequence (SQ) of tones, a battery (27) for feeding the device (34) able 
to form the digital message (M) , said device (34) being characterized 
in that the device able to form a digital message (M) comprises means 
producing an information making it possible to mark the instant where 
the device is time limited or scratched and to modify the sequence of 

numbers and in that it comprises a manually controlled switch (24) 
able to put into service the generator (12) in order to transmit the 
sequence of tones (SQ) . 
{Dwg.1/2 

Abstract (Equivalent) : US 5182767 A 

The electronic telephone device comprises an acoustic transmitter 
and an acoustic generator controlling the acoustic transmitter and 
generating tones falling within the telephone band. A digital message 
which consists of a set of numbers is generated. The set of numbers 
changes on each use of the electronic device. The digital message 
generator determines a time limitation moment. 

The digital message generator comprises a memory containing a 
first identification code and a second code of a service key linked 
to the telephone system in which the device is used. An electronic and 
logic circuit is connected to the memory, for delivering a message 
controlling the generator, this message depending on the two codes. 
Each number of the message controls the generator so as to have the 
acoustic transmitter transmit a partic. sequence of tones. A battery 
powers the device. A manually controlled switch puts the acoustic 
generator into service so as to transmit the sequence of tones. 

ADVANTAGE - Has shape of token with switch on one side and 
loudspeaker on the other. 
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Abstract (Basic) : WO 9106926 A 



The personal identification system has a unit to be carried by a 
person to be identified. The unit contains, memory for storing a 
predetermined coded value . A circuit changes a predetermined 
portion of the coded value at time intervals in accordance with a 
predetermined algorithm. The algorithm is such that the value of the 
portion of the stored coded value at any given time is nonpredictable . 
A circuit producing a triggering signal, and a second circuit 
responsive to the triggering signal causes an indication of the current 
stored coded value to be automatically produced in a predetermined 
sequence . 

A station having circuiting automatically responsive to the 
produced coded value sequence identifies the person who is to be 
carrying the unit. 

ADVANTAGE - Permits verification by proximity to checkpoint. (53pp 
Dwg.No. 1/2 
Abstract (Equivalent): EP 497889 B 

The personal identification system has a unit to be carried by a 
person to be identified. The unit contains memory for storing a 
predetermined coded value . A circuit changes a predetermined 
portion of the coded value at time intervals in accordance with a 
predetermined algorithm. The algorithm is such that the value of the 
portion of the stored coded value at any given time is nonpredictable. 
A circuit producing a triggering signal, and a second circuit 
responsive to the triggering signal causes an indication of the current 
stored coded value to be automatically produced in a predetermined 
sequence . 

A station having circuiting automatically responsive to the 
produced coded value sequence identifies the person who is to be 
carrying the unit. 

ADVANTAGE - Permits verification by proximity to checkpoint. 
{Dwg.1/2) 

EP-555219 A device in the possession of an individual is used to 
generate a unique, time varying, non-predictable code. The code is 
mixed with a secret PIN for the individual. The mixed output is 
communicated to a central verification computer. 

The computer typically strips the PIN from the communicated 
value, and uses the stripped PIN and remaining non-predictable code 
to perform a verification operation. 

ADVANTAGE - Improved security against tapping of the line or 
obtaining possession of the user device. 

(Dwg.1/3) 

EP-497889 A personal identification system comprising: a unit (12) 
to be carried out by a person to be identified, said unit containing 
means (32) for storing a predetermined coded value, means (30) for 
changing at least a predetermined portion of the coded value at 
predetermined time intervals in accordance with a predetermined 
algorithm, the algorithm being such that the value of said 
predetermined portion of the stored coded value at any given time is 
nonpredictable, means (28,66,74) for producing a triggering signal, and 
means (30) responsive to said triggering signal for causing an 
indication of the current stored coded value to be automatically 
produced in a predetermined sequence; and a station (10) having means 
(48) automatically responsive to the produced coded value sequence for 
identifying the person who is to be carrying the unit, characterised in 
that said unit includes a keypad (36), and wherein said triggering 
signal producing means includes means responsive to a predetermined 
keypad input sequence for generating the triggering signal. 

(Dwg. 1/2 

Abstract (Equivalent): US 5097505 A 

Each person to be identified has a unit such as a card, badge or 
other taken or device which stores a predetermined coded value, a 



predetermined portion of which is changed at selected time intervals in 
accordance with an algorithm, the algorithm being such that the value 
of the predetermined portion of the stored coded value at any given 
time is nonpredictable . The unit has a triggering signal generator, the 
unit being responsive to the triggering signal to present an indication 
of the current sorted coded value to the station, the station 
responding to the predetermined coded value for identifying the person. 
Triggering may be in response to detection of a predetermined beacon 
from the station, in response to a user keypad input or may be 
periodically generated. 

Security may be enhanced by the person inputting a unique PIN at 
the unit which PIN is utlized in generating the nonpredictable codes. 
The PIN input may also be used for triggering. Verification may be 
achieved by including a public code as part of the code which is 
presented from the unit which public code is not changed. 

USE - Controlling passage into vault. (12pp) ^ 

US5168520 The appts. includes a unit for mixing the nonpredictable 
code generated by the device at a given time with the PIN according 
to a predetermined algorithm to generate a combined coded value. A 
modem separately communicates the nonsecret identifying code and / 
the combined code value to the central verification computer. / 

The central verification computer includes a unit to use the / 
nonsecret identifying code to retrieve the PIN and generate an 
appropriate, unique, time varying nonpredictable code for the 
individual, and a unit to use the retrieved PIN , appropriate 
nonpredictable code and the combined coded value in performing a 
verification operation. 

ADVANTAGE - Improved security. PIN is never transmitted in 
uncoded form and is not resident in users appts. (card). 

{Dwg.1/3 
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Identification and authentication system for computer security - has 
keyboard providing matrix of coefficients with numbers and letters to 
form password for encryption 
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Priority Applications (No Type Date) : US 8795405 A 19870910 

Cited Patents: A3... 8930; EP 147837; GB 2186106; No-SR.Pub; US 4034193; US 

4184148; US 4333090; US 4502048 
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Abstract (Basic) : EP 306997 A 

Inputting of a character into the system is initiated by actuation 
of one of nine contact switches (lOA-lOI) disposed in a three-by-three 
matrix. Variable visible indicia are shown on LEDs (30A-I) associated 
with respective keys. The symbols on the LEDs are subjects of the code 
alphabet from which the string of symbols for the password is 
selected. A string forming a password is made up of matrix 
coefficients and binary digits representing numbers and letters. The 
password is used for authenticating a user seeking access to a 
restricted resource by logging in the password . 

The numbers and letters change in each display cycle which 
accompanies the logging-in of a symbol for identification ano 
authentication. A ROM (27) associated with the matrix stores the 
configuration of characters to be placed on the matrix at each oisplay 
cycle. The encryption ROM is programmed to respond to provide 
characters in successive display cycles. 

ADVANTAGE - Prevents disclosure of code from observation of 
keyboard display 

Abstract (Equivalent) : EP 306997 B 

A security apparatus for identification of preselected code of 
symbols comprising in combination an arrangement of a plurality of 
locations of manual switches (lOA-1) said switches (lOA-1) being 
selectively and sequentially actuatable to produce a sequence of values 
defining an actuated code of symbols, a first memory (X) means for 
providing pulses representing the actuated code of symbols upon 
actuation of said switches, means (35) associated with said first 
memory (X) for receiving the values of said actuated code of symbols, a 
microprocessor having a second memory (40) accessed by the 
microprocessor, means for storing in said second memory a preselected 
code of symbols, said microprocessor having means (37) for comparing 
the actuated code of symbols with the stored code of symbols, 
characterised in that said arrangement of a plurality of locations of 
manual switches is a matrix (33) consisting of an arrangement of a 
plurality of locations and matrix coefficients which are coordinate 
positions within the matrix defined by row and column, and including 
selectively operable manual switches and variable visible indicia 
associated with said switches, said indicia operative to display 
alphanumeric characters consisting of letters and numerals at said 
locations, said preselected code of symbols in the form of a digital 
binary coded decimal code consisting of alphanumeric characters and 
matrix coefficients, so that a matrix coefficient is a code value 



represented by a visible indicia at a selected location at a selected 
sequence in said preselected code said first memory (X) containing said 
alphanumeric characters and matrix coefficients for display on said 
variable indicia, said means (35) associated with said first memory (X) 
displaying characters on said variable indicia, including the character 
contained in the preselected code of symbols if a character is to be 
inputted at this actuation step, said stored code in said second memory 
(40) consisting of at least one alphanumeric character and at least one 
matrix coefficient said microprocessor being operative to sequentially 
enter to said microprocessor pulses defining said actuated code of 
symbols which pulses represent the character displayed at the location 
of the actuated switch when the symbol to be entered at this step is a 
character, or represent the matrix coefficient corresponding to the 
position of the actuated switch independently of the character 
displayed at this location when the symbol to be entered at this step 
is a matrix coefficient, said compari 

(Dwg.l/lOb 

) 

Abstract (Equivalent) : US 4962530 A 

Each of the variable visible indicia is associated with a key. Upon 
each keystroke on the keyboard, the system randomly changes the 
positions of all of the indicia on the matrix. Because the true value 
of any particular key is independent of the value displayed on the 
variable visible indicia, a casual observer can not learn the 
keystrokes being entered into the keyboard. 

If the code entered at the keyboard matches a stored value, the 
user is granted access. {20pp) 
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Set Items Description 

51 274780 PIN OR PINS OR PID OR PIDS OR UIN OR UINS 

52 7729 (SEQUENCE? ? OR SERIES) (IN) (NUMERIC? OR NUMBER? ? OR NUMER- 

AL? ? OR ALPHANUMERIC?) 

53 229134 PASSWORD? OR PASSCODE? OR PASSKEY? OR PASSNUMBER? OR PASSV- 

ALUE? 

54 20919 PASSO (WORD? ? OR KEY? ? OR CODE? ? OR NUMBER? ? OR VALUE? 

? OR IDENTIFIER? OR ID OR SEQUENCE?) 

55 122202 (ID OR IDENTIFY? OR IDENTIFICATION? OR IDENTIFIE? ? OR AUT- 

HENTICAT? OR ACCESS OR AUTHORIZ? OR AUTHORIS?) () (CODE? ? OR N- 
UMBER? ? OR SEQUENCE) 

56 1 COENCYPHER? OR COENCIPHER? OR COCYPHER? OR COCIPHER? OR CO- 

ENCRYPT? OR COINCOD? OR COENCOD? 

57 55 COO (ENCIPHER? OR ENCYPHER? OR ENCOD??? ? OR INCOD??? ? OR 

ENCRYPT?) 

58 471719 VARIABLE? ? 

59 14451 S8(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR SUP- 

PLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR AUGME- 
NT?) 

510 115192 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (CHANGEAB? OR CH- 
ANG??? ? OR VARY? OR VARIE? ? OR INCONSTAN? OR INDETERMINAT? ) 

511 58 94 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (UNFIX?? ? OR DY- 
NAMIC?) 

512 3038 S10:S11(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR 

SUPPLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR A- 
UGMENT?) 
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DIALOG (R) File 16:Gale Group PROMT (R) 

(c) 2004 The Gale Group. All rts. reserv. 

06048544 Supplier Number: 53635270 (USE FORMAT 7 FOR FULLTEXT) 
Banking on-line. (Switzerland) 
Studer-Walsh, Margaret 
SwissWORLD, n6, p36(l) 
Dec-Jan, 1998 

Language: English Record Type: Fulltext 
Document Type: Magazine/ Journal; Trade 

Word Count: 704 ^ 

attempting to access via internet must punch in the contract number 
of the account, a password and an additional number that changes 
each time the programme is entered. This number is then scratched off a ^ 
list provided. . . 



21/3, K/9 (Item 7 from file: 16) 

DIALOG (R) File 16: Gale Group PROMT (R) 

(c) 2004 The Gale Group. All rts. reserv. 

04855456 Supplier Number: 47142262 (USE FORMAT 7 FOR FULLTEXT) 
Printing Edge unites technologies 
Holland, Tony 
Packaging Week, pl3 
Feb 20, 1997 

Language: English Record Type: Fulltext 
Document Type: Magazine/ Journal ; Trade 
Word Count: 188 

The system links production line speed pad printing of logos or colour 
designs with additional variable laser coding for different batch or 
identification numbers , in a unit that comprises a robotic loading and 
unloading feature . 

Items drawn from a... 
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02861137 Supplier Number: 43853110 (USE FORMAT 7 FOR FULLTEXT) 
BT N America rolls out 4 new network security features and services for 
users of its Global Data Network 

Common Carrier Week, pN/A 
May 24, 1993 

Language: English Record Type: Fulltext 
Document Type: Newsletter; Professional Trade 
Word Count : 164 

" (USE FORMAT 7 FOR FULLTEXT) 
TEXT: 

...problem industry estimates costs $3 billion per year: (1) User 
identification and authentication. (2) Data encryption . (3) Customized 
security reports. (4) Specialized consulting services. New security 
elements were designed "in response... 

...and unauthorized network access," ETNA said. User 

identification/authentication aspect replaces older method of reusable 



password that allows access to protected information, it said. New method 
provides each user with credit-card-sized device with LCD front that 
displays "pseudo randomly generated 6-digit niimber " that automatically 
changes every 60 sec, ETNA said. To gain access to protected information, 
user enters secret personal identification number ( PIN ) followed by 
number currently displayed on LCD. Network then evaluates information to 
verify user^s PIN and access code that should be displayed on LCD. If 
both numbers pass checks, access is allowed, ETNA. . . 
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DIALOG (R) File 16: Gale Group PROMT (R) 

(c) 2004 The Gale Group. All rts. reserv. 

02857777 Supplier Number: 43848001 (USE FORMAT 7 FOR FULLTEXT) 

BT North America launches 4 new network security features and services 

Communications Daily, pN/A 
May 20, 1993 

Language: English Record Type: Fulltext 
Document Type: Newsletter; Trade 
Word Count: 164 

(USE FORMAT 7 FOR FULLTEXT) 
TEXT: 

...problem industry estimates costs $3 billion a year: (1) User 
identification and authentication. (2) Data encryption . (3) Customized 
security reports. (4) Specialized consulting services. New security 
elements were designed "in response... 

...and unauthorized network access," ETNA said. User \ 
identification/authentication aspect replaces older method of reusable \ 
password that allows access to protected information, it said. New method 
provides each user with credit-card-sized device with LDC front that 
displays "pseudo randomly generated 6-digit number " that automatically 
changes every 60 sec, ETNA said. To gain access to protected information, 
user enters secret personal identification number ( PIN ) followed by 
number currently displayed on LCD. Network then evaluates information to 
verify user's PIN and access code that should be displayed on LCD. If 
both numbers pass checks, access is allowed, ETNA. . . 



21/3, K/14 (Item 12 from file: 16) 

DIALOG (R) File 16: Gale Group PROMT (R) 

(c) 2004 The Gale Group. All rts. reserv. 

02725676 Supplier Number: 43645651 (USE FORMAT 7 FOR FULLTEXT) 
FISCHER & PORTER INTRODUCES SINGLE LOOP CONTROLLER 
News Release, pi 
Feb 12, 1993 

Language: English Record Type: Fulltext 
Document Type: Magazine/ Journal ; Trade 
Word Count: 392 

Controller is for applications where one variable 
must automatically be maintained in definite proportion to another 
variable . The PID 
algorithm is executed to maintain a controlled line 

at a predetermined proportion to the uncontrolled. . . 
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DIALOG (R) File 47: Gale Group Magazine DB(TM) 
(c) 2004 The Gale group. All rts. reserv. 

03780471 SUPPLIER NUMBER: 12341521 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Keep casual PC snoops at bay with batch security, (password batch file; 
Toolkit) (Tutorial) 

Richardson, Ronny; Moore, Stephen 
PC-Computing, v5, n7, p316(3) 
July, 1992 

DOCUMENT TYPE: Tutorial ISSN: 0899-1847 LANGUAGE: ENGLISH 

RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 2052 LINE COUNT: 0014 6 

identically to the first section but look for different characters. 
If you want a longer password , add more environmental variables to 
the top of the batch file and add more of these sections. 
Testing the . . . 



21/3, K/26 (Item 9 from file: 47) 

DIALOG (R) File 47: Gale Group Magazine DB(TM) 
(c) 2004 The Gale group. All rts. reserv. 

03627831 SUPPLIER NUMBER: 11548489 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Securing local government, (security systems) (includes related article) 

Rogers, Donna 

T^erican City & County, vl06, nil, p44(6) 
Nov, 1991 

CODEN: ACCOD ISSN: 014 9-337X LANGUAGE: ENGLISH RECORD TYPE: 

FULLTEXT; ABSTRACT 
WORD COUNT: 2015 LINE COUNT: 00164 

the reader sends out an RF signal that causes the card to begin 
transmitting its encoded number . The cards' varying frequencies are 
detected and translated into an ID ntimber by the host computer. 
Advantages to this technology are hands-free operation via a card. . . 

21/3, K/27 (Item 10 from file: 47) 

DIALOG (R) File 47: Gale Group Magazine DB(TM) 
(c) 2004 The Gale group. All rts. reserv. 

03478224 SUPPLIER NUMBER: 09635001 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Spider Systems Inc. Spider Analyzer 320 2.3. (Hardware Review) (one of five 

evaluations of LAN analyzers in * Five LAN analyzers meet diverse needs ' ) 

(evaluation) 

Fratus, John; Graeff, Al; Preuss, Don 
PC Week, v7, n47, pll0(2) 
Nov 26, 1990 

DOCUMENT TYPE: evaluation ISSN: 0740-1604 LANGUAGE: ENGLISH 

RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 690 LINE COUNT: 00055 

PC Week Labs used this ability to help test the other network 
analyzers . 

A configuration variable adds a password for using the traffic 
generation and protocol decoding modes. This feature can provide some 
securrity. . . 



21/3, K/37 (Item 5 from file: 148) 

DIALOG (R) File 148: Gale Group Trade & Industry DB 
(c)2004 The Gale Group. All rts. reserv. 

08840832 SUPPLIER NUMBER: 18398381 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Tune in to telecommunications. 
Risk Management, v43, n6, p44(l) 
June, 1996 

ISSN: 0035-5593 LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 953 LINE COUNT: 00081 

... which will soon be able to recognize the user's voice, and the 

introduction of dynamic PIN numbers that constantly change , The 
good news from her perspective is that since the stakes are very, high, 
solutions . . . 
? t21/3, k/44-45, 48, 60 

21/3, K/44 (Item 12 from file: 148) 

DIALOG(R) File 148:Gale Group Trade & Industry DB 
(c)2004 The Gale Group. All rts. reserv. 

07526099 SUPPLIER NUMBER: 16237356 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

How to get your employees back from the Internet. (Live Wire) (Column) 

Gallagher, Sean 

Government Computer News, vl3, nl8, p57{2) 
August 15, 1994 

DOCUMENT TYPE: Column ISSN: 0738-4 300 LANGUAGE: ENGLISH 

RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 756 LINE COUNT: 00056 

Data Encryption Standard algorithm to create "sniffless" passwords. 
Other systems require authentication with a generated nximber , like Secure 
Dynamics Inc.'s SecurlD smart card system. 

These hardware solutions can get pretty expensive. You may... 

21/3, K/45 (Item 13 from file: 148) 

DIALOG (R) File 148: Gale Group Trade & Industry DB 
(c)2004 The Gale Group. All rts. reserv. 

06785996 SUPPLIER NUMBER: 14431757 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Security products abound, but is toll fraud too tough? 
O'Shea, Dan 

Telephony, v225, n9, p7(2) 
August 30, 1993 

ISSN: 0040-2656 LANGUAGE: ENGLISH RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 810 LINE COUNT: 00067 

identification card with an access number that changes ramdomly 
every 60 seconds, end-to-end encryption of sensitive data, security 
reports and security consulting services. 

Despite the offensive against telecom fraud. . . 

21/3, K/48 (Item 16 from file: 148) 

DIALOG (R) File 14 8: Gale Group Trade & Industry DB 
(c)2004 The Gale Group. All rts. reserv. 



064 64413 SUPPLIER NUMBER: 13765114 (USE FORMAT 7 OR 9 FOR FULL TEXT) 



BT N. America (ETNA) rolled out 4 new network security features and 

services for users of its Global Data Network. (BT North America Inc.) 
(Telephony) 

Coininunications Daily, vl3, n97, p6(l) 
May 20, 1993 

ISSN: 0277-0679 LANGUAGE: ENGLISH RECORD TYPE: FULLTEXT 

WORD COUNT: 179 LINE COUNT: 00015 

TEXT: 

...with credit-card-sized device with LDC front that displays "pseudo 
randomly generated 6-digit number " that automatically changes every 60 
sec, BTNA said. To gain access to protected information, user enters 
secret personal identification number ( PIN ) followed by number 
currently displayed on LCD. Network then evaluates information to verify 
user's PIN and access code that should be displayed on LCD. If both 
numbers pass checks, access is allowed, BTNA. . . 



21/3, K/60 (Item 1 from file: 160) 

DIALOG (R) File 160: Gale Group PROMT (R) 

(c) 1999 The Gale Group. All rts. reserv. 

02421369 

Enigma Logic Introduces Multiple-Mode Security Token for Hand-Held 
Authentication of Computer Users 

News Release November 13, 1989 p. 1 

. . -device that offers asynchronous and/or time- independent synchronous 
operation for the generation of dynamic passwords . The device is 
packaged in a credit-card plastic case that is one eighth of... 

... The new card's operational paradigms can range from synchronous, 
single-stroke generation of dynamic passwords - based upon usage 
histories stored within the card's memory - to more formal challenge- 
response dialogues in which the card generates encrypted passwords in 
response to host-generated challenges. For additional security, the card 
can be configured with user- changeable personal identification numbers 
( PIN 's) that protect against unauthorilted use should a users card be 
lost or stolen , ... 
? t21/3, k/61, 64, 69 

21/3, K/61 (Item 2 from file: 160) 

DIALOG (R) File 160: Gale Group PROMT (R) 

(c) 1999 The Gale Group. All rts. reserv. 

02270880 

WESTINGHOUSE INTRODUCES TOKEN-BASED SECURITY SOFTWARE SYSTEM 

News Release April 17, 1989 p. 1 

... of security by requiring the validation of three separate items — a 
userid, a user-changeable password and a physical device (token) . The 
introduction of NC-PASS represents Westinghouse Management Systems Software 

...can be used with a variety of hardware tokens from any vendor supporting 
the Data Encryption Standard or a proprietary encryption algorithm. The 
tokens, electronic handheld devices, are used to generate a dynamic 

numerical code which is different each time the user attempts to access 
the system. Tokens vary from supplier to supplier. Some use a Personal 

Identification Number ( PIN ) or multiple PINs . Encryption 



algorithms may also generate time-synchronized passwords or utilize 
random challenge/response pairs. When a user attempts to log on using a... 

21/3, K/64 (Item 1 from file: 275) 

DIALOG (R) File 275: Gale Group Computer DB(TM) 
(c) 2004 The Gale Group. All rts. reserv. 

02112287 SUPPLIER NUMBER: 19905074 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Pviblic key infrastructures, (protecting data within a network) (includes 

related article on whether to use outside certificate authorities) 

(Technology Information) 

Karve, Anita 

Network, vl2, nl2, p69(5) 
Nov, 1997 

LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 3953 LINE COUNT: 00307 

... no one would be the wiser. 

One way to get around this use of static passwords is to employ a 
two-factor token authentication system, such as that manufactured by 
Security. . . 

...access the network by typing in a user name; however, instead of 
entering the same password each time, they carry a token that displays a 
dynamic string of numerals . These changing nnmbers are in sync with 
the network server, so as long as you enter the password the token 
displays for you before it changes, you're in. In other cases, informa- 
tion from a token is encrypted each time, ensuring a unique password 
for each login. 

In most cases, these two-factor authentication systems are used almost 
exclusively. . . 



21/3, K/69 (Item 6 from file: 275) 

DIALOG (R) File 275: Gale Group Computer DB(TM) 
(c) 2004 The Gale Group. All rts. reserv. 

01704268 SUPPLIER NUMBER: 16255924 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Working with a net. (network security administration) (includes related 
article on network security) 

Jacobs, Paula; Schwartz, Deborah 
HP Professional, v8, n9, p42{6) 
Sept, 1994 

ISSN: 0896-145X LANGUAGE: ENGLISH RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 3162 LINE COUNT: 00263 

now a number of commercially available authentication types of 
products that can be used to encrypt sensitive, confidential data. They 
include Digital Pathways' (Mountain View, Calif.) Secure NetKey, a 
hand-held authentication calculator; Security Dynamics' (Cambridge, Mass.) 
Secure ID (complete turnkey systems), which provides a changing nximber 
authentication card; Racal-Guardata ' s (Herndon, Va.) WatchWord and 
Watchword II, which provides an authentication calculator; and Enigma 
Logic's (Concord, Calif.) SafeWord, a card authentication calculator that 
supports onetime passwords . 

Password protection is an area of major concern to network 
administrators. Guardian from DataLynx Inc.. 
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Set Items Description 

51 213844 PIN OR PINS OR PID OR PIDS OR UIN OR UINS 

52 11683 (SEQUENCE? ? OR SERIES) (IN) (NUMERIC? OR NUMBER? ? OR NUMER- 

AL? ? OR ALPHANUMERIC?) 

53 131580 PASSWORD? OR PASSCODE? OR PASSKEY? OR PASSNUMBER? OR PASSV- 

ALUE? 

54 15081 PASSO (WORD? ? OR KEY? ? OR CODE? ? OR NUMBER? ? OR VALUE? 

? OR IDENTIFIER? OR ID OR SEQUENCE?) 

55 80823 (ID OR IDENTIFY? OR IDENTIFICATION? OR IDENTIFIE? ? OR AUT- 

HENTICAT? OR ACCESS OR AUTHORIZ? OR AUTHORIS?) () (CODE? ? OR N- 
UMBER? ? OR SEQUENCE) 

56 4 COENCYPHER? OR COENCIPHER? OR COCYPHER? OR COCIPHER? OR CO- 

ENCRYPT? OR COINCOD? OR COENCOD? 

57 21 C0() (ENCIPHER? OR ENCYPHER? OR ENCOD??? ? OR INCOD??? ? OR 

ENCRYPT?) 

58 415847 VARIABLE? ? 

59 15081 S8(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR SUP- 

PLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR AUGME- 
NT?) 

510 113455 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (CHANGEAB? OR CH- 
ANG??? ? OR VARY? OR VARIE? ? OR INCONSTAN? OR INDETERMINAT? ) 

511 4 651 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (UNFIX?? ? OR DY- 
NAMIC?) 

512 2446 SIO: Sll (3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR 

SUPPLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR A- 
UGMENT?) 

513 2379 (FURTHER OR SECOND OR PAIR?? ?) (1W)S8 



514 54 S1:S5(S) (S6:S7 OR S9 OR S12) 

515 1103 S1:S5 (S)S10:S11 

516 3 S1:S4(S)S13 

517 63 S15(S) (ENCRYPT? OR ENCIPHER? OR ENCYPHER? OR ENCOD???? ? OR 

INCOD???? ?) 

518 118 S14 OR S16:S17 

519 71 518/1999:2004 

520 47 S18 NOT S19 

521 40 RD (unique items) 



21/3, K/3 (Item 2 from file: 15) 

DIALOG (R) File 15 : ABI/Inf orm (R) 

(c) 2004 ProQuest Inf o&Learning . All rts. reserv. 
01650130 03-01120 

Capture Information Once and Keep It 

Spate, Joe 

Manufacturing Systems vl6n5 PP: 34-38 May 1998 
ISSN: 0748-948X JRNL CODE: MFS 
WORD COUNT: 1235 



...TEXT: bottlenecks, it turned to Auto ID to help fill in the blanks. 2D 
symbologies, which encode all information in one label and collects data 
with one scan, provided previously lacking information for each pallet and 
container. Each 2D label encodes the supplier code, delivery order 
number, part nxomber , - quantity, engineering change level, sequence 
niamber , and advance ship notice (ASN) number. 

In early 1997. the company began testing the program... 



21/3, K/8 (Item 7 from file: 15) 

DIALOG (R) File 15 : ABI/Inf orm (R) 

(c) 2004 ProQuest Inf o&Learning . All rts. reserv. 

01232786 98-82181 

Tune in to telecommunications 

Anonymous 

Risk Management v43n6 PP: 44 Jun 1996 
ISSN: 0035-5593 JRNL CODE: RMT 
WORD COUNT: 884 

...TEXT: various loss control and technological approaches to protect phone 
callers. The answers lie somewhere between encryption , velocity checking, 
radio frequency signatures, which will soon be able to recognize the user's 
voice, and the introduction or dynamic PIN numbers that constantly 
change . The good news from her perspective is that since the stakes are 
very high, solutions... 



21/3, K/10 (Item 9 from file: 15) 

DIALOG(R) File 15 : ABI/Inf orm (R) 

(c) 2004 ProQuest Inf o&Learning . All rts. reserv. 

01053355 97-02749 
Secure communications 

Kirch, John F 

Security Management v39n6 PP: 17-19 Jun 1995 
ISSN: 0145-9406 JRNL CODE: SEM 
WORD COUNT: 788 



...ABSTRACT: back office operations are centralized at the home office. The 
company installed the Access Control Encryption system, made by Security 
Dynamics Inc. Users are issued SecurlD smart cards, which resemble credit 



...display (LCD) window in the upper right hand corner. The window displays 
a 6-digit number that changes once every 60 seconds. To access the main 
computer system from a remote site, a user logs in the card's PIN number 
as well as the passcode shown in the LCD window at that moment. 



21/3, K/13 (Item 12 from file: 15) 

DIALOG (R) File 15 :ABI /Inform ( R) 

(c) 2004 ProQuest Inf o&Learning . All rts. reserv. 

00959366 96-08759 
Who's listening? 

Betts, Mitch 

Computerworld v29nl PP: 66 Dec 26, 1994/Jan 2, 1995 
ISSN: 0010-4841 JRNL CODE: COW 
WORD COUNT: 4 91 

. . . TEXT: a scanner. 

But there's more. CDPD modems scramble the airborne data using public key 
encryption from RSA Data Security, Inc. in Redwood City, Calif. They also 
provide a frequently changing identification number for the user's 
device to thwart hackers who capture ID numbers . 

On top of that, corporate network managers can add their own security 
measures, such as... 



21/3, K/17 (Item 16 from file: 15) 

DIALOG (R) File 15 : ABI/Inf orm (R) 

(c) 2004 ProQuest Inf o&Learning . All rts. reserv. 
00766516 94-15908 

Security products abound, but is toll fraud too tough? 

0 Shea, Dan 

Telephony v225n9 PP: 7, 13 Aug 30, 1993 
ISSN: 0040-2656 JRNL CODE: TPH 
WORD COUNT: 754 

...TEXT: security services for its data customers. These services include a 
user identification card with an access number that changes randomly 
every 60 seconds, end-to-end encryption of sensitive data, security , 
reports and security consulting services. 

Despite the offensive against telecom fraud. . . 
? t21/3,k/27,31,37 

21/3, K/27 (Item 1 from file: 624) 

DIALOG (R) File 624 : McGraw-Hill Publications 

(c) 2004 McGraw-Hill Co. Inc. All rts. reserv. 

0680408 

BLOCKING THE INTERNAL THREAT: Authentication, Encryption, Single-Use 
Passwords and Internal Security 



Open Computing July, 1995; Pg 48 

Journal Code: UNIX ISSN: 0739-5922 

Section Heading: IS IT NEGLIGENCES? 

Word Count: 609 *Full text available in Formats 5, 7 and 9* 

BYLINE: 
R.K. 

TEXT: 

... keep coming. Hardware protection against theft of computer systems and 
mobile computers includes power-on passwords for access to the system and 
environment. Hard-drive security codes for mobile systems are similar to 
the personal identification numbers used in cellular telephones and 

actually prevent the hard drive from functioning until the right code 
number is entered. More sophisticated measures include single-use 
passwords and changing hardware identification nvimbers . Here is a 
select group of new encryption and authentication products: 

AXENT TECHNOLOGIES, a division of Raxco Inc., offers several modules called 
OmniGuard. . . 



21/3, K/31 (Item 4 from file: 647) 

DIALOG (R) File 647: CMP Computer Fulltext 
(c) 2004 CMP Media, LLC. All rts. reserv. 

01052079 CMP ACCESSION NUMBER: cwl9950508S0080 

enterprise away team Telecommuting is great for businesses, but what's in 

store for network managers (letters to the editor) 
DENISE PAPPALARDO 

COMMUNICATIONSWEEK, 1995, n 556, PG43 

PUBLICATION DATE: 950508 

JOURNAL CODE: cw LANGUAGE: English 

RECORD TYPE: Fulltext 

SECTION HEADING: Closeup 

WORD COUNT: 3095 

... SecurelD, a credit card- sized token. ^ 

The SecurelD card has an LCD panel displaying a number that \ 
changes every 60 seconds. When a user dials into the ACE/Server machine's 
database, he or she is first asked for a personal identification number 
, then a pass code -the number on the LCD screen. This number is i 
encrypted and sent to the ACE/Server machine over any LAN wire-even a / 
phone line. . . 



21/3, K/37 (Item 2 from file: 674) 

DIALOG (R) File 674: Computer News Fulltext 

(c) 2004 IDG Communications. All rts. reserv. 

047493 

Ready, set, GO REMOTE 

NetworkWorld Review, NetworkWorld TEST ALLIANCE 

In the race among six remote access servers, one unit takes the checkered 
flag. 

Byline: Gerald Williams and Jonathan Torta 
Journal: Network World Page Number: 41 

Publication Date: October 16, 1995 
Word Count: 2224 Line Count: 207 



Text : 

. . . Security Once users log on to a remote access server, they must still 
enter a password to gain access to other resources on the network. In 
addition, the network administrator can. . . 

... Technologies, Inc. Secur-ID. With SecurlD, end users get a smart card 
that displays an identification number that changes at a fixed 

interval, giving them unique passwords each time they log on. MAXserver 
1620 also supports Kerberos, an authentication technique that uses a master 
host with encrypted logons. AccessBuilder 2000 provides broad support for 
third-party security packages. Routing tools Security features... 

9 
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51 134274 PIN OR PINS OR PID OR PIDS OR UIN OR UINS 

52 14086 (SEQUENCE? ? OR SERIES) (IN) {NUMERIC? OR NUMBER? ? OR NUMER- 

AL? ?" OR ALPHANUMERIC?) 

53 9351 PASSWORD? OR PASSCODE? OR PASSKEY? OR PASSNUMBER? OR PASSV- 

ALUE? 

54 660 PASSO (WORD? ? OR KEY? ? OR CODE? ? OR NUMBER? ? OR VALUE? 

? OR IDENTIFIER? OR ID OR SEQUENCE?) 

55 10998 (ID OR IDENTIFY? OR IDENTIFICATION? OR IDENTIFIE? ? OR AUT- 

HENTICAT? OR ACCESS OR AUTHORIZ? OR AUTHORIS?) () (CODE? ? OR N- 
UMBER? ? OR SEQUENCE) 

56 4 COENCYPHER? OR COENCIPHER? OR COCYPHER? OR COCIPHER? OR CO- 

ENCRYPT? OR COINCOD? OR COENCOD? 

57 11 C0() (ENCIPHER? OR ENCYPHER? OR ENCOD??? ? OR INCOD??? ? OR 

ENCRYPT?) 

58 1537137 VARIABLE? ? 
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PLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR AUGME- 
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UGMENT?) 
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514 1491" S1:S5 AND S10:S11 

515 14 S14 AND (ENCRYPT? OR ENCIPHER? OR ENCYPHER? OR ENCOD???? ? 
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23/7/10 (Item 10 from file: 2) 

DIALOG (R) Fiie 2 : INSPEC 

(c) 2004 Institution of Electrical Engineers, All rts. reserv. 

02129391 INSPEC Abstract Number: B83056410 
Title: Generation and reception of spread- spec trtim signals 

Author(s): Moser, R. 

Author Affiliation: Locus Inc., Boalsburg, PA, USA 
Journal: Microwave Journal vol.26, no. 5 p. 202-7 
Publication Date: May 1983 Country of Publication: USA 
CODEN: MCWJAD ISSN: 0026-2897 

Language: English Document Type: Journal Paper (JP) 
Treatment: Applications (A); General, Review (G) 

Abstract: Discusses 'spread-spectrum' technique in which digitized 
information is added to a pseudo-random nromber sequence and the 

resultant bit stream changes some parameter of the carrier frequency in 
discrete increments. The rationale behind SS systems is to protect the 
signal from unwanted interference. The discrete modulation of the carrier 
frequency is usually performed either as a Multiple Level (M-ARY) Phase 
Shift Keyed (PSK) or Frequency Shift Keyed (FSK) Signal. The advent of 
ultra-complex monolithic integrated circuits is beginning to make 
spread-spectrum systems economical and available to the commercial field. 
(5 Refs) 

Subfile: B 
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Degree: PH.D. 
Year: 1993 

Corporate Source/Institution: NORTH TEXAS STATE UNIVERSITY (0158) 
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Prior research has documented the trend since 1974 away from 
def ined-benef it plans toward def ined-contribution plans as the primary 
vehicle for employees' retirement income security. No published research 
has examined the specific impact of the four major legislative acts passed 
during 1986 and 1987 on this trend. The purpose of this research was to 
examine the United States population of plans with over 100 participants to 
determine the extent of the reaction away from defined benefit plans 
resulting from the 1986 and 1987 legislation. 

This research organized the Internal Revenue Service form 5500 records 
into a time-series panel-data format covering the years 1984 through 198 9 
for each unique Employer Identification Number . The LIMDEP statistical 
computer package was used to formulate a pooled time-series, 
intervention-type, random-effects model. A separate multinomial logit 
regression on the population of def ined-benef it plans existing in 1984 and 
1985 predicted the probability of plan termination by 1990. 

Prior research on the population of plans was achieved by performing 



cross-sectional regressions on selected years with explanatory variables 
including size of firm, one-digit SIC industry code, and union status. The 
present study is the first research of which the author is aware that 
examined the issue using a time-series approach tracking a specific firm 
through time. For the logit regression, additional variables unique to 
a plan (top heavy, integrated, maximum over/under funding, existence of a 
funding waiver request, change in retirement age) were examined. 

Results indicated a decrease in def ined-benef it (DB) coverage for 1986 
and 1987 greater than expected, given the pre-existing downward trend. Size 
was positively correlated with the existence of a def ined-benef it plan when 
addressing the entire population of firms reporting for any qualified plan. 
Surprisingly, size had minimal DB-plan-continuation prediction ability for 
firms with a pre-existing def ined-benef it plan. Union existence and plan 
integration with Social Security appeared to exert a strong influence 
against DB plan termination. 
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Remotely Possible/Dial 4.0 

Varhol, Peter D 

Mobile Office , January 1, 1995 , v6 nl p94-96, 2 Page(s) 
ISSN: 1047-1952 

Company Name: Avalan Technology 
Product Name: Remotely Possible/Dial 

Presents a favorable review of Remotely Possible/Dial v4 . 0 ($199), a 
remote control software from Avalan Technology of Holliston, MA (800, 508) . 
Runs on IBM PC compatibles 25K to 50K of RAM, 1MB of hard disk space, a 
Hayes-compatible modem and Windows v3 . 1 . Says that the product is one of 
the few packages designed entirely as a Windows application. Adds that it 
features a simple user interface, a toolbar. States that users can change 
modem parameters , add or modify passwords , or add items to the 
address book from the program's main menu. Also says that the installation 
process is fast and that it has high transfer rates. However, says that the 
program lacks on-line help. Concludes that the product provides remote 
access at excellent value. Includes a photo, a screen display and a summary 
card. (TLJ) 

9 



File 256 : Sof tBase : Reviews, Companies&Prods . 82-2004 /Feb 
(c)2004 Info. Sources Inc 



Set Items Description 

51 270 PIN OR PINS OR PID OR PIDS OR UIN OR UINS 

52 30 (SEQUENCE? ? OR SERIES) (IN) (NUMERIC? OR NUMBER? ? OR NUMER- 

AL? ? OR ALPHANUMERIC?) 

53 2075 PASSWORD? OR PASSCODE? OR PASSKEY? OR PASSNUMBER? OR PASSV- 

ALUE? 

54 5 PASSO (WORD? ? OR KEY? ? OR CODE? ? OR NUMBER? ? OR VALUE? 

? OR IDENTIFIER? OR ID OR SEQUENCE?) 

55 262 (ID OR IDENTIFY? OR IDENTIFICATION? OR IDENTIFIE? ? OR AUT- 

HENTICAT? OR ACCESS OR AUTHORIZ? OR AUTHORIS?) () (CODE? ? OR N- 
UMBER? ? OR SEQUENCE) 

56 0 COENCYPHER? OR COENCIPHER? OR COCYPHER? OR COCIPHER? OR CO- 

ENCRYPT? OR COINCOD? OR COENCOD? 

57 0 CO 0 (ENCIPHER? OR ENCYPHER? OR ENCOD??? ? OR INCOD??? ? OR 

ENCRYPT?) 

58 1532 VARIABLE? ? 

59 35 S8(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR SUP- 

PLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR AUGME- 
NT?) 

510 18 9 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (CHANGEAB? OR CH- 
ANG??? ? OR VARY? OR VARIE? ? OR INCONSTAN? OR INDETERMINAT? ) 

511 20 (PARAMETER? OR PARAMETRE? OR VALUE OR VALUES OR NUMBER? ? - 

OR NUMERIC? OR NUMERAL? OR ALPHANUMERIC?) (2N) (UNFIX?? ? OR DY- 
NAMIC?) 

512 7 S10:S11(3N) (ADD OR ADDS OR ADDED OR ADDING OR ADDITIONAL OR 

SUPPLEMENT? OR EXTRA OR AUXILIAR? OR ANCILL? OR ANOTHER OR A- 
UGMENT?) 

513 0 S1:S5 AND (S6:S7 OR S9 OR S12) 

514 6 S1:S5 AND S10:S11 

515 0 (FURTHER OR SECOND OR PAIR?? ?) (1W)S8 

516 3 S14/1999:2004 

517 3 S14 NOT S16 
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The method involves entering a number sequence which is only known 
by the user of the service. The number sequence is transmitted 
transparently in the communication network via exchange nodes (SSP) to 
a service control point (SCP) at which the number sequence is 
evaluated. The number sequence is supplemented by a changeable further 
parameter before the transmission through the communication network. 

The sequence is encoded using a mathematical algorithm. The result 
is transmitted to the service control point using multi-frequency 
dialling. An authentication is carried out in the service control 



point. Preferably, the telecommunication network is an intelligent 
network. 

USE - E.g. for credit card calling. 

ADVANTAGE - Provides better security against monitoring, 
Dwg. 1/3 

Title Terms: SERVICE; ACCESS; PROTECT; METHOD; TELECOMMUNICATION; NETWORK; 

ENTER; SEQUENCE; NUMBER; USER; ADD; PARAMETER; SEQUENCE; TRANSMISSION; 

THROUGH; NETWORK; CENTRAL; INSTANCE; EVALUATE 
Derwent Class: P85; WOl 

International Patent Class (Main) : H04L-009/32 

International Patent Class (Additional): G06F-015/00; G09C-001/00; 

H04M-003/42; H04M-015/00 
File Segment: EPI; EngPI 

Manual Codes (EPI/S-X) : W01-A05B; W01-B09; W01-C02A7A; W01-C02B6A; W01-C06; 
W01-C07A3; W01-C08F 



4/5/2 (Item 1 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts. reserv. 



01084714 

METHOD AND DEVICE FOR SECURING ACCESS TO A SERVICE IN A TELECOMMUNICATIONS 
NETWORK 

VERFAHREN UND VORRICHTUNG ZUR SICHERUNG DES ZUGANGS ZU EINEM DIENST IN 

EINEM TELEKOMMUNIKATIONS-NETZ 
PROCEDE ET DISPOSITIF POUR LA SECURISATION DE L'ACCES A UN SERVICE DANS UN 

RESEAU DE TELECOMMUNICATION 

PATENT ASSIGNEE: 

SIEMENS AKTIENGESELLSCHAFT, (200520), Wittelsbacherplat z 2, 80333 Munchen 
, (DE), (Applicant designated States: all) 
INVENTOR: 

GUNDLACH, Michael , Vulpiusstrasse 87, D-81739 Munchen, (DE) 
NAUER, Bernhard , Fuggerstrasse 4, D-81373 Munchen, (DE 

PATENT (CC, No, Kind, Date): EP 1058982 Al 001213 (Basic) 

WO 9944332 990902 

APPLICATION (CC, No, Date): EP 98959711 981002; WO 98DE2949 981002 

PRIORITY (CC, No, Date): DE 19808523 980227 

DESIGNATED STATES: DE; ES; FR; GB; IT 

INTERNATIONAL PATENT CLASS: H04L-009/32; H04M-015/00 
CITED PATENTS (WO A) : XP 2031268 ; XP 2031269 
CITED REFERENCES (WO A) : 

HOLLOWAY C J ET AL: "EMPLOYING ONE-WAY FUNCTION METHODS FOR PIN 

VERIFICATION AND COMPOSITE KEY GENERATION IN ELECTRONIC FUNDS TRANSFER 

SYSTEMS" INTERNATIONAL DATA SECURITY CONFERENCE, 18. Februar 1985, 

Seiten 1-17, XP002031268 
"AUTHENTICATION WITH STORED KP AND DYNAMIC PAC . OCTOBER 1982" IBM 

TECHNICAL DISCLOSURE BULLETIN, Bd. 25, Nr. 5, Oktober 1982, Seiten 

2358-2360, XP002031269; 
NOTE : 

No A-document published by EPO 
LEGAL STATUS (Type, Pub Date, Kind, Text): 
Application: 001213 Al Published application with search report 

Application: 991103 Al International application. (Art. 158(1)) 

Withdrawal: 031001 Al Date application deemed withdrawn: 20030328 

Examination: 001213 Al Date of request for examination: 20000628 

Examination: 021030 Al Date of dispatch of the first examination 

report: 20020917 

Application: 991103 Al International application entering European 

phase 

LANGUAGE ( Publication, Procedural , Application) : German; German; German 



4/5/3 (Item 1 from file: 349) 

DIALOG (R) File 34 9:PCT FULLTEXT 

(c) 2004 WIPO/Univentio. All rts. reserv. 

00512980 **Image available** 

METHOD AND DEVICE FOR SECURING ACCESS TO A SERVICE IN A TELECOMMUNICATIONS 
NETWORK 

PROCEDE ET DISPOSITIF POUR LA SECURISATION DE L'ACCES A UN SERVICE DANS UN 
RESEAU DE TELECOMMUNICATION 

Patent Applicant /Assignee : 
SIEMENS AKTIENGESELLSCHAFT, 
GUNDLACH Michael, 
NAUER Bernhard, 
Inventor (s) : 

GUNDLACH Michael , 
NAUER Bernhard 
Patent and Priority Information (Country, Number, Date) : 
Patent: WO 9944332 Al 19990902 

Application: WO 98DE2949 19981002 {PCT/WO DE9802949) 

Priority Application: DE 19808523 19980227 
Designated States: BR JP US AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL 
PT SE 

Main International Patent Class: H04L-009/32 
International Patent Class: H04M-015/00 
Publication Language: German 
Fulltext Availability: 

Detailed Description 

Claims 
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English Abstract 

The invention relates to a method for accessing a service in a 

telecommunications network, be it an intelligent network, a private 

network or a mobile radio network, from any kind of communications 

terminal. In order to gain access to the desired service, users must 

authenticate themselves by entering sequences of numbers. The invention 

also relates to a device in a telecommunications network for carrying out 
a secure authentication when a service is requested. 



